f9f96c10099feb15bfcef381e6df3bc4f4cf8aca33f0a5920005be08fbb85eb7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9f96c10099feb15bfcef381e6df3bc4f4cf8aca33f0a5920005be08fbb85eb7
Size

83KB
MD5

697583b43484eb5d34c4841f73629700
SHA1

f27ebfd896b1880588505257c52ccd5b1708e400
SHA256

f9f96c10099feb15bfcef381e6df3bc4f4cf8aca33f0a5920005be08fbb85eb7
SHA512

3b919367869e4aea0dbd9be183b2ed836264e66fcdee150b1804561c15a4a54a8a53554179bef96dd28a4d7a411d10e7b5b9996110ea5ac37e2a468c2f1f2719
SSDEEP

1536:k9999f7fshgyFpK/Z7bthD+biYlYBTbeoxIpjVrs2ryrd1vUQuqUfsy:Ifsh5pKThUi/BTvxIHs2qV

Score

N/A

Malware Config

Signatures

Files

f9f96c10099feb15bfcef381e6df3bc4f4cf8aca33f0a5920005be08fbb85eb7
.exe windows x86

ab42e8d8d01e899290d7368ef50fe909

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryW
GetProcessHeap
GetCommProperties
MoveFileWithProgressA
LoadResource
SetDefaultCommConfigW
UnregisterConsoleIME
AddRefActCtx
TerminateJobObject
EnumSystemGeoID
UnlockFile

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE