de3fde3c5dfc414f2a223638c95591ef494de52845753b29449b32bfa3e76c4e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de3fde3c5dfc414f2a223638c95591ef494de52845753b29449b32bfa3e76c4e
Size

119KB
MD5

607c5eefdb05cb5eac81faa82f264bb6
SHA1

2580655ab862d6335c2619cb621bb02d5fb0d614
SHA256

de3fde3c5dfc414f2a223638c95591ef494de52845753b29449b32bfa3e76c4e
SHA512

341285e9e1e3190cf16a873be3b31ace77b6146c44b69462431293f5a9fa574e08a772152b49f6ea297391bb7cf1a0677f0cc46c12494f4f9102ce094b48d9fb
SSDEEP

1536:wfLmzke5I3FvMNRSIEAK5b/7T75/XlbyvpjVrs2ryrd1vUQuqSSqK5tnCvv:um4p3FvMN6AKNTnb+Hs2qxnC

Score

N/A

Malware Config

Signatures

Files

de3fde3c5dfc414f2a223638c95591ef494de52845753b29449b32bfa3e76c4e
.exe windows x86

0d1610857958a57767c1c0cd9303cd23

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenJobObjectW
WriteTapemark
SetCommState
ReadConsoleOutputA
GetGeoInfoA
FindResourceExA
GetVolumeNameForVolumeMountPointA
VirtualProtect
ClearCommBreak
BindIoCompletionCallback
CreateSocketHandle

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 63KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE