4da6dc6143419470bdec1abe1d1d5c9e897cb1daca008d0e97a94710c3c047a8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4da6dc6143419470bdec1abe1d1d5c9e897cb1daca008d0e97a94710c3c047a8
Size

63KB
MD5

02951b39b4b936a89973e2fa1849c9f8
SHA1

785ee05b7e8aa5b78feaccf69a73986953431f9e
SHA256

4da6dc6143419470bdec1abe1d1d5c9e897cb1daca008d0e97a94710c3c047a8
SHA512

49d2197c7688030382ccaf8e67ba4407bbf0b958fb5e375d1dda305d0e519e97305f5c7594998dd8e254c08c9d21d8ed966b7afe245c7e269f8073697e71f9d1
SSDEEP

768:lcYWx2cOzXzD6Sh2jJ4rhArObJeejS0SwvYea7koGhT5G6qNYAq5DN2XVmGJf9Qh:lRbcOKVca4QMYe4QddAcDwNeeBw1

Score

N/A

Malware Config

Signatures

Files

4da6dc6143419470bdec1abe1d1d5c9e897cb1daca008d0e97a94710c3c047a8
.exe windows x86

f3bbc534b3c0cce9eb8eb549cb4ae6be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetOEMCP
CreateFileW
GetCommState
SetNamedPipeHandleState
Process32Next
GetVersionExA
FreeLibrary
OpenJobObjectA
GetProcessHeaps
IsBadHugeWritePtr
OpenWaitableTimerA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE