c96d46d4fb5bd7cd5e5acfa497ac053a8d726ca5e5eab863644506a3307325ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c96d46d4fb5bd7cd5e5acfa497ac053a8d726ca5e5eab863644506a3307325ce
Size

3KB
MD5

65b261db5e799b6dfe68f56abf556530
SHA1

25a9f8ed5090c87b603561c656234681876d2b4b
SHA256

c96d46d4fb5bd7cd5e5acfa497ac053a8d726ca5e5eab863644506a3307325ce
SHA512

6803c471ac9b13f5832003bd0e5b9cd2536f35ff98eb6a061ec89611da294fd21694e6abfe61a7e550bc6346b07f2b4e217afa6a2ced0fc487687870d72e3adc

Score

N/A

Malware Config

Signatures

Files

c96d46d4fb5bd7cd5e5acfa497ac053a8d726ca5e5eab863644506a3307325ce
.exe windows x86

71554149d65c8991b2d1201b8726bfd6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

RtlGetCompressionWorkSpaceSize
RtlDecompressBuffer
RtlCompressBuffer
RtlAdjustPrivilege

kernel32

CloseHandle
GetFileAttributesA
CreateFileA
WriteFile
SetFilePointer
SetEndOfFile
ReadFile
HeapAlloc
GetProcessHeap
GetFileSize
DeviceIoControl

Sections

.text
Size: 1024B - Virtual size: 566B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE