dfa12b7a287783969bf28526a4e002aa135434acd238218f6c8306ea5c2594a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfa12b7a287783969bf28526a4e002aa135434acd238218f6c8306ea5c2594a1
Size

76KB
MD5

64afd66b233273ebd7ecbb1a133e6898
SHA1

876e1c07b27c8f1f68abbd8716304802d684ef92
SHA256

dfa12b7a287783969bf28526a4e002aa135434acd238218f6c8306ea5c2594a1
SHA512

a123656a7c6fe72f498db69678f8c09d822ae194d2fc2935f8a7c20aa3f5e1ba81bcbb874cc841c8cb81371b9324d194b4b380d0b01525d45adea51ed30046e9
SSDEEP

1536:2p0kF3BQq4ik5hNV9YV9Kf9GJ/125zq7cjEErxTWDTMqhGKYIZTET8x:fkNB4Bh9Mci/1kq7cjBkMqhGKZTbx

Score

N/A

Malware Config

Signatures

Files

dfa12b7a287783969bf28526a4e002aa135434acd238218f6c8306ea5c2594a1
.exe windows x86

72a5478dab994da53976937abbc78a96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleScreenBufferInfo
lstrcmpi
TlsGetValue
VDMOperationStarted
LocalFileTimeToFileTime
SetCPGlobal
FlushConsoleInputBuffer
AddConsoleAliasA
OpenConsoleW
LocalLock
ClearCommError

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE