f546a764c9e452ed23e697c2d88352f1face11aad31d08e38edf0f5fe42201b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f546a764c9e452ed23e697c2d88352f1face11aad31d08e38edf0f5fe42201b3
Size

76KB
MD5

6c828e2a567eb73b7cb054b2d6e63342
SHA1

80a923ffe1c3613dd6abddef8ce9b460b6a1dd51
SHA256

f546a764c9e452ed23e697c2d88352f1face11aad31d08e38edf0f5fe42201b3
SHA512

03ffd89a4632048648b06c3dc74cf0cb86ca796a1e48a719cf54da2a7ffda6f38222b9a72f27a7053df00da8b7a9be4aa4351c418252c36eaacca9cf1d002f96
SSDEEP

1536:1FIr+0HQl9u8JgrgBASIkQWKPehJLFmsSxUAn8+1pjVrs2ryrd1vUQuq6:PX9usgrMvQW6CFaxUAn8+1Hs2qo

Score

N/A

Malware Config

Signatures

Files

f546a764c9e452ed23e697c2d88352f1face11aad31d08e38edf0f5fe42201b3
.exe windows x86

ff20a9e11346a36add67b7d6cff8c249

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
BeginUpdateResourceW
LoadLibraryExW
GetThreadTimes
GlobalLock
SetupComm
QueryWin31IniFilesMappedToRegistry
TryEnterCriticalSection
UnmapViewOfFile
RegisterWaitForInputIdle
FindFirstVolumeMountPointA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE