7876fcc25ad2efd044faf2d6e9d668a30654fcda3d8eec13eb4f96d50cf893ca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7876fcc25ad2efd044faf2d6e9d668a30654fcda3d8eec13eb4f96d50cf893ca
Size

56KB
MD5

069d83bdbd096843a961e107c73a8020
SHA1

a3abf990b43d8cdf43b320a3820c00fc0aff4140
SHA256

7876fcc25ad2efd044faf2d6e9d668a30654fcda3d8eec13eb4f96d50cf893ca
SHA512

7aa9a6e4eacd31f8950e0b4bc330e21bd6f4ad917e6e6aebf80fc3cc729b3d07a8b299b27f0b4bbf108d5c41431e17c78dc161652914f143bf38a93890a783ae
SSDEEP

1536:aPpNWxIWf5tHrbeI/Swh7tsKXejRWnxvF7Qso6kZ/oDXhS6mz0O8:aPjWxIWf5tHrTF7tnujRWhF0l6k5oU6X

Score

N/A

Malware Config

Signatures

Files

7876fcc25ad2efd044faf2d6e9d668a30654fcda3d8eec13eb4f96d50cf893ca
.exe windows x86

087562c3d3f20618b004e15932c0233c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyLZFile
FillConsoleOutputAttribute
GetNumaAvailableMemory
SetFirmwareEnvironmentVariableW
FlushViewOfFile
OpenWaitableTimerA
lstrlen
FindVolumeMountPointClose
WriteFile
RtlZeroMemory
MoveFileA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE