e1933255ef08b248925e6973167cadfe4afe7f1777538eb696e12bac2c387941 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1933255ef08b248925e6973167cadfe4afe7f1777538eb696e12bac2c387941
Size

83KB
MD5

69c14150909e08a3f103ca354abae1cd
SHA1

3f720b2db48a4c281413a73074fb67b5c1810fa7
SHA256

e1933255ef08b248925e6973167cadfe4afe7f1777538eb696e12bac2c387941
SHA512

30214facd4e8d5fa6b6059cbb4f7ad4ba356723e55f0e0bab6756565db6ff72a37e63b283706e5a4919b0bff85c473d83a7333e2a9a0bbd54d26dc956e2866d8
SSDEEP

1536:uHkkkkaNc470MvwmyFPYkP06ieHtA4acO0rZURRkhbpjVrs2ryrd1vUQuqkO9hDL:6kkkka57dw/xtiotA4acTKRRCHs2qRp

Score

N/A

Malware Config

Signatures

Files

e1933255ef08b248925e6973167cadfe4afe7f1777538eb696e12bac2c387941
.exe windows x86

fc3f12fab7b478a91883169b8c5aa1e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
GetStdHandle
CreateMailslotW
VirtualAlloc
GetNamedPipeInfo
SetProcessWorkingSetSize
_lread
HeapValidate
LCMapStringA
VirtualAlloc
InterlockedCompareExchange
QueryPerformanceFrequency

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE