50e79f3dae1ca3011c5bdc34071e8aa600753fbc8238238bf051dbd475f67d9e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

50e79f3dae1ca3011c5bdc34071e8aa600753fbc8238238bf051dbd475f67d9e
Size

67KB
MD5

65a384ce7db190380d9585ce17ec57a9
SHA1

29b5e57031976f4c46b5b2513bcc90dabc77a5ec
SHA256

50e79f3dae1ca3011c5bdc34071e8aa600753fbc8238238bf051dbd475f67d9e
SHA512

038f812fdfd666642cb7245063243405e4fdd7c2502ae9b5b86b0c6c2e95fbe4ce505ffaad56c82ef27491dafcf22e53c09d078bc7f1b4388367c5072344eb3d
SSDEEP

1536:Vx8xp3aecOqPNQkz3KFf8rYfIqLxhPv4uLggDiJ4cve7IK:+arPN/zaFfP/xiuLgGoHrK

Score

N/A

Malware Config

Signatures

Files

50e79f3dae1ca3011c5bdc34071e8aa600753fbc8238238bf051dbd475f67d9e
.exe windows x86

6425fe2940ec71c9722786c2ed291344

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateSocketHandle
MoveFileExA
GetPrivateProfileStructA
GlobalFindAtomW
VirtualQuery
FreeUserPhysicalPages
GetCurrentDirectoryA
PurgeComm
ScrollConsoleScreenBufferW
InterlockedExchange
ReadConsoleW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 52KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE