1f4f834217241d58e43236e5d8c51d75222e8c04c12ce5386babc05263abcfdf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f4f834217241d58e43236e5d8c51d75222e8c04c12ce5386babc05263abcfdf
Size

62KB
MD5

4f30359d274ef38744c1cc63a6c93e80
SHA1

0fbffc04023e2d500f8acea89102acf731ea58fe
SHA256

1f4f834217241d58e43236e5d8c51d75222e8c04c12ce5386babc05263abcfdf
SHA512

9c0c17e1f25acc5406d9e19a17801bba6cc4f0993b42e69c68807342241d39665fa464b623adf216bd624b03735517043a3be4fd2662b07c8fc152ce138f1e48
SSDEEP

1536:RsZOsPt1RBz2qhpPU9I48robFQIun5cRQZp:RaFDhps58r80CQZ

Score

N/A

Malware Config

Signatures

Files

1f4f834217241d58e43236e5d8c51d75222e8c04c12ce5386babc05263abcfdf
.exe windows x86

3bae6b1983883da7a903dd0c220fa499

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryExW
SwitchToFiber
OutputDebugStringW
RtlMoveMemory
GetCommandLineA
GetProfileStringA
OpenMutexA
CreateDirectoryW
RegisterWaitForSingleObjectEx
ExitThread
GlobalMemoryStatus

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE