c3f4f594a3bc890eff6f9092e6981d2893ccdfe1100c57f71382b3bf3c59b1d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3f4f594a3bc890eff6f9092e6981d2893ccdfe1100c57f71382b3bf3c59b1d7
Size

81KB
MD5

61028b1a72eb455427398f7e76c2c210
SHA1

7835779dc5e3c26328860572cb4626867cace74f
SHA256

c3f4f594a3bc890eff6f9092e6981d2893ccdfe1100c57f71382b3bf3c59b1d7
SHA512

7c6c8d075cfd15bf5b2ea9990c87b506dbebc74b6753d6a22cfc2af02ae36a6ad1d68ad3abead47c03f703d057b71f7e4e605f717fa259a1690e128760f89289
SSDEEP

1536:YXYPiLJ/ZK45hz7DOAv2UWAZEYS6kpJ0euSmvZ2de0PWmTiKlGA:TPiLJB5hzOgpWAZRkpflmvZ2rnxg

Score

N/A

Malware Config

Signatures

Files

c3f4f594a3bc890eff6f9092e6981d2893ccdfe1100c57f71382b3bf3c59b1d7
.exe windows x86

08c6c6afda2527b8a47741d922302b10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcirt

?cout@@3Vostream_withassign@@A
??6ostream@@QAEAAV0@PBD@Z
?flush@@YAAAVostream@@AAV1@@Z
?cerr@@3Vostream_withassign@@A

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
exit
_XcptFilter
_exit
_splitpath
strchr
printf
sprintf

kernel32

GetConsoleMode
GetStdHandle
CreateMutexA
CreateNamedPipeA
GetCurrentDirectoryA
CreateProcessA
ResumeThread
WaitForSingleObject
Sleep
GetExitCodeProcess
WriteFile
ConnectNamedPipe
ReadFile
TerminateThread
CreateThread
CloseHandle
SetConsoleMode

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 76KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE