b883797cf9852a69b3a1ba72701eef218e2d2170389ca649dda50d8ce90bb4be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b883797cf9852a69b3a1ba72701eef218e2d2170389ca649dda50d8ce90bb4be
Size

50KB
MD5

698dcea199d2147ebbd2c3b5763657b0
SHA1

c0e4aa2d5c0c7ce704acdc2a9665513af1d44c62
SHA256

b883797cf9852a69b3a1ba72701eef218e2d2170389ca649dda50d8ce90bb4be
SHA512

a97afe218bc8245c01f1266ffb2f2d6acf62c3eeebbccad6d83e8ba6408769e4074459cf8bdfe33ad244d772df1c5f4cf70ebd9eac887f48a87e25e052533bc1
SSDEEP

1536:jMmcxnvTMRjS4KghpUZeGsRShMC3VxY12TQHdS5:jWMo9KmeAVn29W

Score

N/A

Malware Config

Signatures

Files

b883797cf9852a69b3a1ba72701eef218e2d2170389ca649dda50d8ce90bb4be
.exe windows x86

53a60ecbaaa1ed29c0124ce12387a9b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WinExec
GetDiskFreeSpaceExW
GetDllDirectoryW
SetConsoleScreenBufferSize
RtlCaptureContext
GlobalWire
HeapValidate
IsProcessorFeaturePresent
GetFileAttributesW
GetConsoleCommandHistoryW
SetConsoleCommandHistoryMode

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE