469979cdf53057904a88be8a94b5d6986e228802ffbbb4313c11e9a1c67510bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

469979cdf53057904a88be8a94b5d6986e228802ffbbb4313c11e9a1c67510bf
Size

115KB
MD5

62f3589790ab5fefaa07ed0014ee15c0
SHA1

e56a826089d3c6f1c1e0d3fcef566b310c314c0e
SHA256

469979cdf53057904a88be8a94b5d6986e228802ffbbb4313c11e9a1c67510bf
SHA512

1b2219c8a1ba235773837430615becd334bd6b22ecbc833751aa5fb2f398d5b73bc26faa16b30f1b492c78b15132fb471973775a4b2553134b35fdb641ac55bd
SSDEEP

3072:VtmDqiW8TItInbWjLfjBkMqhGKZTbzsRg:VtmDZmCCjL7ibZL+

Score

N/A

Malware Config

Signatures

Files

469979cdf53057904a88be8a94b5d6986e228802ffbbb4313c11e9a1c67510bf
.exe windows x86

77d4a8ef5ca532ec4be494f755e121ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupWrite
RegisterWowBaseHandlers
FreeResource
IsSystemResumeAutomatic
SetThreadLocale
SetFileValidData
EnumerateLocalComputerNamesW
DosPathToSessionPathW
DisconnectNamedPipe
GetConsoleTitleA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 59KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE