66135920b5754a95f0a3c6288f34b7749c475d22494a2d0db633619211a05f96 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66135920b5754a95f0a3c6288f34b7749c475d22494a2d0db633619211a05f96
Size

56KB
MD5

6b7918cacbe9cc88a8259db950a186d6
SHA1

3b750b825c98d767de4e7afa346b3bd9cc907f23
SHA256

66135920b5754a95f0a3c6288f34b7749c475d22494a2d0db633619211a05f96
SHA512

c06ff09b2262908075622cc3f1cbbab62b1bd855c9b40df93d7c0f6c3be0f94f867280692b307dfb35642540a9bf6497312f35bcdefd7cfe7c517f080d33ca07
SSDEEP

768:p5sTsIeOxcH491fBycDzTRZFegl+vKHDc4+1tj3/HpzU3pYJCPtvOcS1rq7iKB8Y:p5swKB3hjLk/JUFc1etBcS26EClgMh

Score

N/A

Malware Config

Signatures

Files

66135920b5754a95f0a3c6288f34b7749c475d22494a2d0db633619211a05f96
.exe windows x86

f7569018183d9bc0ad61ba036dcd8fc6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageW
PrivCopyFileExW
CreateMutexA
CreateFileA
QueryDosDeviceW
CancelDeviceWakeupRequest
InterlockedExchangeAdd
RegisterWowBaseHandlers
SearchPathW
GetConsoleDisplayMode
GetDevicePowerState

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE