ae8e8abfd387c68b423598fcefdb518820d875092c0028c1c6b9cf3dea276038 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae8e8abfd387c68b423598fcefdb518820d875092c0028c1c6b9cf3dea276038
Size

495KB
MD5

660fd19858c6817589c12adb67375e00
SHA1

9f54a6c65772d7ed678334be85d486d9c6ee408f
SHA256

ae8e8abfd387c68b423598fcefdb518820d875092c0028c1c6b9cf3dea276038
SHA512

bb93b0d7037954621d08a1d7335c2495bde396e3eeba45ef885a984b751e7a07497e7c81362c8300b5e844243f00673c6054f85291f5104b30f28fa6c22e81e0
SSDEEP

6144:nz3PJEYXcG0dl7UNPw2dz7E01TfxMHRS9v4XjgWlKB2NECSZD7ORtGxaa8AmSkUG:nttXcGG4fjDMHRS9wzfkoNLmEGxI

Score

N/A

Malware Config

Signatures

Files

ae8e8abfd387c68b423598fcefdb518820d875092c0028c1c6b9cf3dea276038
.exe windows x86

9fcd030fc0cdb50f59864353ccabb2f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

RtlAcquirePebLock

kernel32

GetCommandLineA
GetCurrentProcess

Sections

.text
Size: 488KB - Virtual size: 492KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 250B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE