564bffcbdf13271d7267adbcd3b39ad21a34e0cc2faa69c875aab64358418684 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

564bffcbdf13271d7267adbcd3b39ad21a34e0cc2faa69c875aab64358418684
Size

320KB
MD5

6b1cdb421250589ed635cf8ad4f019c0
SHA1

7d9b0b64ce58bc01f90d8c5666ba8652042ca364
SHA256

564bffcbdf13271d7267adbcd3b39ad21a34e0cc2faa69c875aab64358418684
SHA512

f400fa11e672cb2962ebbfffe7e43459d259ece99441cfc9c23ea92cf5ae641ec6a24b3f12ded75902381f247ec2faf21e90e7860176d6b9fb6b9946c5f77de8
SSDEEP

6144:6+QpLT46LH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:6ppvJ2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

564bffcbdf13271d7267adbcd3b39ad21a34e0cc2faa69c875aab64358418684
.exe windows x86

04bc6b8abdc37cca733bcadd2f0c99f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
GetACP
GetProcessHeaps
ZombifyActCtx
SetEnvironmentVariableW
GetThreadLocale
GetVersionExA
GetCurrentThreadId
SetConsoleCP
FlushConsoleInputBuffer
InvalidateConsoleDIBits
GetTempPathW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE