2e989169c249822a903a188c3b2c361081a54baca431d76af5dd1d8e7ac04fd7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e989169c249822a903a188c3b2c361081a54baca431d76af5dd1d8e7ac04fd7
Size

133KB
MD5

7555b952b4b1877abc8db212f2acea32
SHA1

1a5babe739da9038d4c8320380b1f50abbb1f308
SHA256

2e989169c249822a903a188c3b2c361081a54baca431d76af5dd1d8e7ac04fd7
SHA512

6ff20ca340079a270050269799b6d97546b07146da62712e82967374bc2d07088a9cf1efb240a55248c0ca5666e8fc24e27fa53e93db340a192aa1225fa7015f
SSDEEP

3072:hSRcdZ0FsLa3Ql0rE9J+NTM4JNaTxNIu1CWvqLCK:wVFSJ+NTrJQTjnd

Score

N/A

Malware Config

Signatures

Files

2e989169c249822a903a188c3b2c361081a54baca431d76af5dd1d8e7ac04fd7
.exe windows x86

5524fc752d164f81c504c500b4d83a13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsProcessorFeaturePresent
MoveFileWithProgressW
GetComputerNameExA
Process32First
SetConsoleDisplayMode
ReplaceFileW
FlushConsoleInputBuffer
WinExec
PeekConsoleInputA
InitializeCriticalSection

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE