fbb78e1cb68194993172dcb4237f564bba0fe7c3e25fe83aa4915ca65a4d2c56 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbb78e1cb68194993172dcb4237f564bba0fe7c3e25fe83aa4915ca65a4d2c56
Size

24KB
MD5

173bcf82e2b571d0bc50fb336d971fc3
SHA1

9a2b24e8439a4fc5fe1ad7a82e68eb7506d82a09
SHA256

fbb78e1cb68194993172dcb4237f564bba0fe7c3e25fe83aa4915ca65a4d2c56
SHA512

00398062a5d1f2ada4c590974cc19d1fc35f0fd5b2c75c2b80a5f5afa4382b2ee5e70c873d02becd2633f2489a456ef3e459da5916c373118cea0e973499d5ba
SSDEEP

384:jmYX5K6v4Gprye3R1lZs7hBFXjEnR1HCUsEKHXbOBGN21/qtUuLJy4oq//P2:jZK6dr2lBdgRBx1KHXbUd1YxJy4d/n2

Score

N/A

Malware Config

Signatures

Files

fbb78e1cb68194993172dcb4237f564bba0fe7c3e25fe83aa4915ca65a4d2c56
.exe windows x86

09d0478591d4f788cb3e5ea416c25237

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 14KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE