7f35b717a641d30b0e928d842718d14ed35b5a3fbd62e3e7f0255767d99d0cdb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f35b717a641d30b0e928d842718d14ed35b5a3fbd62e3e7f0255767d99d0cdb
Size

76KB
MD5

1f18fb14cc7b9e9e456fe669e7cd8990
SHA1

81102dba13e43e1e0d835657b7dd62720a3e972a
SHA256

7f35b717a641d30b0e928d842718d14ed35b5a3fbd62e3e7f0255767d99d0cdb
SHA512

6474fcce8e61ddec9e46658d77f869f8fa1629be6388e2c0fb5ffb46d1b38d701e3c6f4d3f2ad589637e724b9692388abbdade3ab21d6a307f8c312f67340d26
SSDEEP

1536:jhAAAyMQziOt2r3GaNw/0IOzJRmfF4CgXyU3lyIjEErxTWDTMqhGKYIZTET8x:jhAAAJFO8DJNM8zJRmiiU3lyIjBkMqhj

Score

N/A

Malware Config

Signatures

Files

7f35b717a641d30b0e928d842718d14ed35b5a3fbd62e3e7f0255767d99d0cdb
.exe windows x86

8eb19beff9e87bbc719291bc65ba464c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFile
WaitForDebugEvent
GetProcAddress
GlobalUnfix
FoldStringW
GlobalHandle
FindActCtxSectionStringW
InterlockedDecrement
SetProcessAffinityMask
WriteProfileStringA
WaitNamedPipeA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE