ffc093e570247a13205a59e4a6a023df29b0245f16490ed52ca1c9d8ca263556 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffc093e570247a13205a59e4a6a023df29b0245f16490ed52ca1c9d8ca263556
Size

75KB
MD5

756e9f96607ab4e1f1ce950b3f683ae5
SHA1

1619d7b965f769c9c9c126f32649911006477ed3
SHA256

ffc093e570247a13205a59e4a6a023df29b0245f16490ed52ca1c9d8ca263556
SHA512

ed1522af7e08a9f61c55cff820ef004e646b68c9d5d42685d62ee208cee0328ed02e072da87890fca128549c15f0123f8bb0995e7cdd9b526bdfca60ca511877
SSDEEP

1536:aS35LGjhCvLfPWN8BCgjW1JlsIEpLPOKhvT6O1J:D35LG4vL48fjWLls9FOKhrv1J

Score

N/A

Malware Config

Signatures

Files

ffc093e570247a13205a59e4a6a023df29b0245f16490ed52ca1c9d8ca263556
.exe windows x86

c3192228caca6f27f49c053825b12b34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ValidateLocale
GetTempFileNameW
FindActCtxSectionStringW
GetDiskFreeSpaceW
CallNamedPipeW
VerSetConditionMask
IsDebuggerPresent
SetConsoleCommandHistoryMode
EnumDateFormatsExA
BindIoCompletionCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 61KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE