5054b7117ffd8f086ff61c460111213d91644ca6ecc97b6da6ef2fb7156a08b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5054b7117ffd8f086ff61c460111213d91644ca6ecc97b6da6ef2fb7156a08b1
Size

162KB
MD5

2e6d49f910760d6d2c370cb242494006
SHA1

a8554c632328e93c49ef82c7bbd86b6bb1edd1af
SHA256

5054b7117ffd8f086ff61c460111213d91644ca6ecc97b6da6ef2fb7156a08b1
SHA512

264ba64765da83f7306e3eb51615042d319f956b0ae63427dc44bc1bd63c63849e75688acccde66e68fec2afa3bdd9ae411909e0b71639cca70d3d6a5b156ce5
SSDEEP

1536:LHYwtuZhYz2IqcQvbgAu/MiC6NyhejFfJ8FvPFlFGFfYRKYwgnYgx:LHYwtuZhYzmtiDyMjj8t/FGFqKYTnh

Score

N/A

Malware Config

Signatures

Files

5054b7117ffd8f086ff61c460111213d91644ca6ecc97b6da6ef2fb7156a08b1
.exe windows x86

f1c4dcb7cbd05752a3f62c63a9e2d7d3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtDisplayString
NtDeleteFile
NtTerminateProcess
RtlFreeHeap
NtDelayExecution
RtlInitUnicodeString
RtlAllocateHeap
RtlCreateHeap
memset

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ