db497e03776931994811bf19b959f43ea76471f6a75d988d8a3fec09585a7934 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db497e03776931994811bf19b959f43ea76471f6a75d988d8a3fec09585a7934
Size

320KB
MD5

741300d84bff2a38c5931ce655766a60
SHA1

48677ade49a5fbcc9619c770164da5eac2aac42d
SHA256

db497e03776931994811bf19b959f43ea76471f6a75d988d8a3fec09585a7934
SHA512

d6b5fa7c8b295acb51bc972aabdd4b964931aacf0198b3fd2e9df59ab46c58c5da195ff9e52351e7e245ec6095293c4ba2c1a0aa0e56ad58e236014d6cf19706
SSDEEP

6144:uN8SpgpOcrstH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:E8UgpqN2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

db497e03776931994811bf19b959f43ea76471f6a75d988d8a3fec09585a7934
.exe windows x86

47e545466c0016546f76a648bcec86f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueueUserWorkItem
GetPrivateProfileIntW
CreateFileMappingW
WriteFileGather
SetCalendarInfoA
GetVolumePathNamesForVolumeNameW
GetQueuedCompletionStatus
RegisterWowBaseHandlers
GetEnvironmentStringsA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE