41f22e6446cb24464ae388cf6c604e64a82d6950178aadddccaefbab961b906d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41f22e6446cb24464ae388cf6c604e64a82d6950178aadddccaefbab961b906d
Size

111KB
MD5

4ba03ccd712d652153f30fb72b109300
SHA1

2228a0330d77511482230f0fb2e0838c81e07661
SHA256

41f22e6446cb24464ae388cf6c604e64a82d6950178aadddccaefbab961b906d
SHA512

d696392a60b9822b42f7a178c15421ba1fc11dc02d3b32c5297bff91c6fd6fe4a3d97d49cc6fcc3eac20dcf5faf41df4cfe764de2b5a921f50da66245562dd35
SSDEEP

3072:NOMg36nvZGFTe+T2O+68yaaGVuZSb5LOp/Ja4:/g3uvZGFlqNPuYu/X

Score

N/A

Malware Config

Signatures

Files

41f22e6446cb24464ae388cf6c604e64a82d6950178aadddccaefbab961b906d
.exe windows x86

4bd24c747333d94837bdd1cfb5ec3a9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiW
GetSystemPowerStatus
VirtualBufferExceptionHandler
IsBadHugeWritePtr
FormatMessageA
GetLogicalProcessorInformation
RegisterWaitForSingleObject
WriteConsoleInputW
Module32NextW
DuplicateHandle

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 97KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cduupqo
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE