ec1c68a1aef0db32741e7d12ef0355e8f925a8ce262b605ef4abf12bcf4b29fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec1c68a1aef0db32741e7d12ef0355e8f925a8ce262b605ef4abf12bcf4b29fd
Size

83KB
MD5

6e361964e08c6ad490bc5842e29e54a0
SHA1

9637c5a146ba398fcc54f9358ead11593da3c1b0
SHA256

ec1c68a1aef0db32741e7d12ef0355e8f925a8ce262b605ef4abf12bcf4b29fd
SHA512

e50a065925fe8e5df9a901f5bba467ce04ddd1407ac013afa84ace15621e2d54bb28b01de433fcc1c50f1db352f8a2e4b8deefd994347ce5f7019ab92165f3ee
SSDEEP

1536:M8ZTRhYW0eFoJNHRanvcXkb4Em19CQgjEErxTWDTMqhGKYIZTET8pfa:MDx1yHZm19CFjBkMqhGKZTbR

Score

N/A

Malware Config

Signatures

Files

ec1c68a1aef0db32741e7d12ef0355e8f925a8ce262b605ef4abf12bcf4b29fd
.exe windows x86

d818f09b71f73e44ada5e8e79f88deb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringW
SetConsoleFont
FindFirstVolumeMountPointA
CheckNameLegalDOS8Dot3A
GetNumaAvailableMemoryNode
GetUserDefaultLangID
AssignProcessToJobObject
FindActCtxSectionStringA
lstrcpyn

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE