661fb6646c196b798273546735b9731268f07bdcefdc8dddb49f2e160a3ade20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

661fb6646c196b798273546735b9731268f07bdcefdc8dddb49f2e160a3ade20
Size

851KB
MD5

57395822860bda23d569e2d369290350
SHA1

22a1404a83d39f86330b1f68fc76e815b0f1fe83
SHA256

661fb6646c196b798273546735b9731268f07bdcefdc8dddb49f2e160a3ade20
SHA512

466ddcca94a82579e785b2eb6eb958addee21fe4a47894cbef28a610e24c6cd67f721b00b58f60b18495b8770dc0e82cf31a1ff625d7e9b6009bb8ea94a5ead8
SSDEEP

12288:icA6SbVi42BFx8dUP1fwes/sbbIoQZwTaF:iOSb32H6WK9/s/BdG

Score

N/A

Malware Config

Signatures

Files

661fb6646c196b798273546735b9731268f07bdcefdc8dddb49f2e160a3ade20
.exe windows x86

09d0478591d4f788cb3e5ea416c25237

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 205KB - Virtual size: 640KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 142KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE