9d894ecae9d70c1b954e9ef959b6da37748348da70804e5cd1ddf13b54e047a3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9d894ecae9d70c1b954e9ef959b6da37748348da70804e5cd1ddf13b54e047a3
Size

76KB
MD5

014b9c583c0814ed799a0a02729b0f51
SHA1

07c531faee87c2dbc9ac27bc5cde26517dfefd56
SHA256

9d894ecae9d70c1b954e9ef959b6da37748348da70804e5cd1ddf13b54e047a3
SHA512

6c80920e2c5f94a413453958f1b0026074d2ccd68a651353ebc9a51708374149bf9b14f247fcdb527340597091aa69a77655e39c282f04589cfa0fe4fedc0e8d
SSDEEP

1536:3kW0YoW+B+3pDtE/jgnmx4HcEQpjVrs2ryrd1vUQuq6:3F+E35ibgmiH9QHs2qo

Score

N/A

Malware Config

Signatures

Files

9d894ecae9d70c1b954e9ef959b6da37748348da70804e5cd1ddf13b54e047a3
.exe windows x86

dabf691a11fa8588004944ce4e4e83ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
EscapeCommFunction
EnumLanguageGroupLocalesA
GetTapePosition
RtlCaptureStackBackTrace
SetConsoleCommandHistoryMode
CmdBatNotification
LZStart
lstrcpyW
MapUserPhysicalPagesScatter

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE