1350c76e73a70b1198e2628249f3be7a43ce4d70c2c841d8be500a397bb5db48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1350c76e73a70b1198e2628249f3be7a43ce4d70c2c841d8be500a397bb5db48
Size

83KB
MD5

31f9f485ffad12b068d1be3bdbf1853e
SHA1

3d855c4e49498659db9eab67b3bbc4a826e79809
SHA256

1350c76e73a70b1198e2628249f3be7a43ce4d70c2c841d8be500a397bb5db48
SHA512

f1aa7b89d35f7e19c6afaad3a18987be3454b226046a7e9291be37af5f1101790554e94d3a76457f997279e0dad039f1c3850f430fc43414ff3cc53cc359782c
SSDEEP

1536:5Ckogim8CyDKe5A692mo7KQqRqYjZtPYCHjEErxTWDTMqhGKYIZTET8y9p:vcm8Il692milqRqYjZtXjBkMqhGKZTbW

Score

N/A

Malware Config

Signatures

Files

1350c76e73a70b1198e2628249f3be7a43ce4d70c2c841d8be500a397bb5db48
.exe windows x86

a70716f61944ace53af756cb95e64756

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyLZFile
FindActCtxSectionStringA
InterlockedExchangeAdd
CreateWaitableTimerA
AddConsoleAliasW
UnlockFileEx
SetConsoleMaximumWindowSize
AssignProcessToJobObject
MoveFileWithProgressW
SetLastConsoleEventActive

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE