f63e66fc8a064967d6bb4a0e8c591d2811088459d81b7cfe56f1d3b666a7482a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f63e66fc8a064967d6bb4a0e8c591d2811088459d81b7cfe56f1d3b666a7482a
Size

83KB
MD5

6ef829e49ac457641e1d2b1e9bf8803b
SHA1

68353a396e4f80a4c4781a331b7820cbebca503d
SHA256

f63e66fc8a064967d6bb4a0e8c591d2811088459d81b7cfe56f1d3b666a7482a
SHA512

314ed9f6be1ddd9027e75768be8bc3e00fd315d9dda10d3beb12b8a03657719e4a91bca82031d1366e6f0e08fcbbd423a438871fcb519f0e45e2fbbb8e263171
SSDEEP

1536:WMZMh2b0HoFzjEejE9rYNjffbiOFZ/QsmkmmrtUSX4Zf87jEErxTWDTMqhGKYIZ8:WMZJEoVG9sNjOOFZYsmk1pJ087jBkMqG

Score

N/A

Malware Config

Signatures

Files

f63e66fc8a064967d6bb4a0e8c591d2811088459d81b7cfe56f1d3b666a7482a
.exe windows x86

28667ad17a49be6baf1e8bc7887f47b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateJobObjectA
GetTimeFormatA
LZSeek
DeleteVolumeMountPointA
GetConsoleCursorMode
BuildCommDCBW
CheckNameLegalDOS8Dot3W
DebugActiveProcess
GetCalendarInfoA
InterlockedPopEntrySList
CreateMemoryResourceNotification

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE