047ad06faf85e89a923eac7b4ea9dd852914935b52bb9c792d42b2440882061a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

047ad06faf85e89a923eac7b4ea9dd852914935b52bb9c792d42b2440882061a
Size

76KB
MD5

63545b1130a9a883d2f52cc41ce8ef6a
SHA1

75fb2ae303fa2477e618708c045323a86b8191c9
SHA256

047ad06faf85e89a923eac7b4ea9dd852914935b52bb9c792d42b2440882061a
SHA512

e1af2bfac8cfabb5c786241e24cc75a9bc890b0ae366adb1168591b2a6624e075b9fcc92154476a3b4cf90a073063cc619e5967785b2ce3424237e65f0fa70ad
SSDEEP

1536:yvb+wMc1/775gHAHLZH9CjirQSMJDIzqxgApjVrs2ryrd1vUQuq6:yD+w9d77mHCLZH3m2TAHs2qo

Score

N/A

Malware Config

Signatures

Files

047ad06faf85e89a923eac7b4ea9dd852914935b52bb9c792d42b2440882061a
.exe windows x86

bbdf34c8798d3ab21a3efb049169e41c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
GetNamedPipeHandleStateA
GetConsoleAliasExesLengthW
Module32NextW
GetCPFileNameFromRegistry
HeapValidate
CreateProcessInternalW
lstrcpyA
DeleteAtom
BindIoCompletionCallback
GetDllDirectoryA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE