4b105239e81f3684239b921cd3e2b6ae8568c456ac130150c31b7b79ad85d6c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b105239e81f3684239b921cd3e2b6ae8568c456ac130150c31b7b79ad85d6c7
Size

94KB
MD5

6b9c5d9700e9e705d05cc7c8a0e3b0f0
SHA1

98fa3da501a764d520441a1f4487cf7665f6f4b6
SHA256

4b105239e81f3684239b921cd3e2b6ae8568c456ac130150c31b7b79ad85d6c7
SHA512

1fc1b35a0c8c1c2e7416c3854b8a2230eda560f809358ba8f2cb0ec11fe1001fef405d6780e0e0c480eec6980ba25b0163212e0d3ef3b155249f11b9268142a4
SSDEEP

1536:sSKdxlDN3cNfdsWp0xFjPzDn4nzSPnR7swt5jgAc8YaEJwZK4/83ZoMOALF6SSf:EdxlDN3y1s+4FjzD4WF/+AhZEXtpxLFU

Score

N/A

Malware Config

Signatures

Files

4b105239e81f3684239b921cd3e2b6ae8568c456ac130150c31b7b79ad85d6c7
.exe windows x86

b302b31e5a54ae6a24c41ef3228bfb3e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleOutputW
SetThreadLocale
GetConsoleNlsMode
SetConsoleInputExeNameW
LocalFlags
GetCommMask
CreateWaitableTimerW
GetTempPathA
RtlUnwind
GetVolumeNameForVolumeMountPointA
EnumSystemCodePagesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE