f3903493282f9785237ba0c7744863e987ec7974b2d1cdd7492f7e17f91347ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3903493282f9785237ba0c7744863e987ec7974b2d1cdd7492f7e17f91347ae
Size

56KB
MD5

656145f71a7be9b69ff59a0c52892560
SHA1

a507adf409be2599443bb0b34a5efbd8374d0f58
SHA256

f3903493282f9785237ba0c7744863e987ec7974b2d1cdd7492f7e17f91347ae
SHA512

39498623e77f023e11ffd7407d7f9bdf1b05a0bf2fa473cba66599fe16c92efdf3f3566da5f45ccf2d5e37d4bbebc0ae09b3a01d24569ad3e663290966c87a36
SSDEEP

1536:YkJJJJqEvULyhGplLBEdk9umAWDcVhSUIzYM:YkJJJJqEcy8fBEdpVNIzb

Score

N/A

Malware Config

Signatures

Files

f3903493282f9785237ba0c7744863e987ec7974b2d1cdd7492f7e17f91347ae
.exe windows x86

68d9e197a9e91db61d0d3a5191f82762

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynW
ReplaceFileW
lstrcmpW
VerSetConditionMask
GetProcessHeaps
GetCalendarInfoW
SetConsoleTitleA
SetEvent
CallNamedPipeA
ResetEvent
GetDriveTypeW
AddConsoleAliasA
RtlZeroMemory

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE