5351171f1475b67db41dc07ea02d6ff269b22756c8715f0cde2c1503dea3c44a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5351171f1475b67db41dc07ea02d6ff269b22756c8715f0cde2c1503dea3c44a
Size

83KB
MD5

695c1a55de5f4d76bfcd80f480474a00
SHA1

4600689564b9110526898452208acfc1745b51c1
SHA256

5351171f1475b67db41dc07ea02d6ff269b22756c8715f0cde2c1503dea3c44a
SHA512

59bf0d6b8a529f512e729f6bfd8b721241d98d978c7da9e85038802ac057da06c96b5e4441f13b71379590cf447d9c27d2126d09e5d7d00a7a224b1c3eb9c00e
SSDEEP

1536:z24yDxinWxHP1eXv1+M7JHiky8NDuk3gilqHopjEErxTWDTMqhGKYIZTET8s0C98:iNH9eQadieNS4jBkMqhGKZTbsX8

Score

N/A

Malware Config

Signatures

Files

5351171f1475b67db41dc07ea02d6ff269b22756c8715f0cde2c1503dea3c44a
.exe windows x86

538d3ed368d9010c8c9abcc0f978b791

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleOutputW
GetStdHandle
lstrcatW
IsBadCodePtr
IsProcessorFeaturePresent
VirtualAlloc
PeekNamedPipe
OpenEventA
InterlockedDecrement
GetLongPathNameW
FindNextVolumeA
TryEnterCriticalSection

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE