e0e79055aebf670b6b1df60751ca3749b6ebf58f42ca624671c2205bba97d2fe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0e79055aebf670b6b1df60751ca3749b6ebf58f42ca624671c2205bba97d2fe
Size

59KB
MD5

6d479b3ac1176b9d27fced38593165d7
SHA1

cf24cf181fc3270c36379e31c76181a84308cc85
SHA256

e0e79055aebf670b6b1df60751ca3749b6ebf58f42ca624671c2205bba97d2fe
SHA512

dc0ad30f54f3d161691edfd914c9991804d0ba32d8e53e0854e1b0c08ed4457700fe7c0706897fcd84aa220ccb8a46837a9053383e91267c1e31141c911e9e48
SSDEEP

1536:rUZfij+/g7JVRJ3ZoJpwIX+6jmhnlp583Z83h:AZfieg7HRJIpw2+6yhD5SKh

Score

N/A

Malware Config

Signatures

Files

e0e79055aebf670b6b1df60751ca3749b6ebf58f42ca624671c2205bba97d2fe
.exe windows x86

e807eb5ac63234abcb88e2102edf4245

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupSeek
ReadConsoleOutputCharacterA
RtlUnwind
IsBadStringPtrW
FindClose
Heap32First
SuspendThread
SetDllDirectoryW
GetWindowsDirectoryA
DeleteVolumeMountPointW
ChangeTimerQueueTimer

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 36KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE