397e4cc7e70eedb566a3a121a9f12da69733d6f0d3236a3d1ba0a514f4987827 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

397e4cc7e70eedb566a3a121a9f12da69733d6f0d3236a3d1ba0a514f4987827
Size

107KB
MD5

64b9e2df8b8fe7331cab77462c854440
SHA1

f8c47c4d2da74cedaa6d6c86ecf311d5b28b8cee
SHA256

397e4cc7e70eedb566a3a121a9f12da69733d6f0d3236a3d1ba0a514f4987827
SHA512

0a149d5176083fb7ee6351d41e74e387bae9d5b0ae8f3f9733e997b1646528ba8971aef964b0d5904d8acb73278a700b076fd1dd45eca1c65ab56861edff6184
SSDEEP

3072:vCS8WDtLC4BTMAZpcWYoSKRAkHs2quGf9:FRDxCgKToSb8

Score

N/A

Malware Config

Signatures

Files

397e4cc7e70eedb566a3a121a9f12da69733d6f0d3236a3d1ba0a514f4987827
.exe windows x86

13992d0ebe319a3ea82e9be93524b810

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleA
SetVolumeMountPointW
GetLocaleInfoA
SetFileAttributesA
GetConsoleHardwareState
lstrcpynA
EnumResourceNamesW
MapViewOfFileEx
CreateProcessW
GetBinaryTypeW
GetCPInfo
DebugSetProcessKillOnExit

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 51KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE