70770015dc43fd35b5c7e18988aab4c3ccf321ed686bcb71c763a7d520460e1d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70770015dc43fd35b5c7e18988aab4c3ccf321ed686bcb71c763a7d520460e1d
Size

63KB
MD5

6e157ca45414fdff05de8d7da9b42bc0
SHA1

42ad4845e7c96e99a9ae99a66471984f30a7af6b
SHA256

70770015dc43fd35b5c7e18988aab4c3ccf321ed686bcb71c763a7d520460e1d
SHA512

927b1ca949bbf9834ef8d921657b05858e3f594f0b91dae8a6448df267233b468194db899b80714b927da26e4e12bec6d546adefd1da49b94cb85f108b448ec3
SSDEEP

1536:QKlkiqGH2RNQGsJ0GGsHBdRdK/uY4FpiH+UYXFfRh37IMju2vM1:Q0kivWRAJ2sH62Y4FpieUYdAis

Score

N/A

Malware Config

Signatures

Files

70770015dc43fd35b5c7e18988aab4c3ccf321ed686bcb71c763a7d520460e1d
.exe windows x86

e2e1cdc2b872dc613ab8dc812dc1cbb7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleInputExeNameW
GetNumaProcessorMap
SetConsoleCommandHistoryMode
DuplicateHandle
GetProcessAffinityMask
CompareStringW
AddConsoleAliasW
AddLocalAlternateComputerNameA
OpenMutexA
FindVolumeMountPointClose

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE