86eddb959d27eaa5448202f250216bb76391f4df2223286144d7586f35f16288 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86eddb959d27eaa5448202f250216bb76391f4df2223286144d7586f35f16288
Size

56KB
MD5

066d4f9da42625744bd2c5c42e9da381
SHA1

404f980bd3570edc2946d9226c05e65319bd7e35
SHA256

86eddb959d27eaa5448202f250216bb76391f4df2223286144d7586f35f16288
SHA512

054b6a537ea5a41a38293730516dc62448d01f3931d8e20cdd187c842c023757dc0332cb5b00147eefe2742eddc26b0a148afca2e0439063ad0cece926b7f19f
SSDEEP

1536:+b/jatGYhRGMh4CSnj2aajxktY1pgXS3sUUJJn:+bLatdhRGMBkwjWEgXS3sTJ1

Score

N/A

Malware Config

Signatures

Files

86eddb959d27eaa5448202f250216bb76391f4df2223286144d7586f35f16288
.exe windows x86

93149e07ab534e893b940852f2f93656

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SearchPathW
InterlockedFlushSList
GetThreadPriorityBoost
FatalAppExitW
FillConsoleOutputCharacterA
IsProcessorFeaturePresent
InterlockedExchange
GetNumaHighestNodeNumber
lstrcat
GetComPlusPackageInstallStatus

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE