b9b09fadc120c8540e4a5a80a1fd5a739fe5462758c2d771c89e29d188e70f7f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9b09fadc120c8540e4a5a80a1fd5a739fe5462758c2d771c89e29d188e70f7f
Size

144KB
MD5

6f59000a397a85c8312c1afefe2dd120
SHA1

ff356d7d28fb28fb4f4bf62e9df98154f71f1616
SHA256

b9b09fadc120c8540e4a5a80a1fd5a739fe5462758c2d771c89e29d188e70f7f
SHA512

fe8341bea5169fe977d5c7e85e04319438979dd4253528c0d93073155e2188f19c6ce99c76107a950f15283523470936f66d50b8d57a6d2f65784ed5c76a1c30
SSDEEP

3072:XGFe0MISBBJCBzjsHs2qmRlixXaKa0qMW2pVol3IFEyKwLR:XJBJC10/wguJpVopIh

Score

N/A

Malware Config

Signatures

Files

b9b09fadc120c8540e4a5a80a1fd5a739fe5462758c2d771c89e29d188e70f7f
.exe windows x86

5760e37007f32098ddda77a3087d249f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumTimeFormatsW
FindFirstVolumeMountPointW
SetTimerQueueTimer
FindVolumeClose
RtlZeroMemory
SetProcessShutdownParameters
DisconnectNamedPipe
GetFileType
RegisterConsoleOS2
GetConsoleAliasExesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE