de41e71a843a193b0b200a386189e5a4286646fae3eee3b46ed615f989a795cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de41e71a843a193b0b200a386189e5a4286646fae3eee3b46ed615f989a795cc
Size

56KB
MD5

6bfb569d95cd754ffe81f3c4385edd70
SHA1

512e3c8aac7fb9c01abff6927d26ba2255298a1b
SHA256

de41e71a843a193b0b200a386189e5a4286646fae3eee3b46ed615f989a795cc
SHA512

874f12bf942c721185d6fdbbad4d1711281f592c7a5ebdc52a0ebdd6ec28e07ee850115692ce0cc1abbd0095348d68bef2c726d869e937bd00a82c45cb95c9a4
SSDEEP

1536:Mi/z8KAzB9cvu7kxJY6tKWQEple1d81Fca49Dm9:xzpmB2vu7kM60EGL9a4Vc

Score

N/A

Malware Config

Signatures

Files

de41e71a843a193b0b200a386189e5a4286646fae3eee3b46ed615f989a795cc
.exe windows x86

231d218412850c4b4e671afe394794bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TransmitCommChar
GetCommandLineA
VerLanguageNameW
InitAtomTable
DebugBreak
DuplicateConsoleHandle
GetSystemTimeAdjustment
UnregisterConsoleIME
InterlockedCompareExchange
LCMapStringW
GetNamedPipeHandleStateA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE