fd76585a6912926ba5453dc4bb7def08c0983e765a83269992e92fc185140f44 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd76585a6912926ba5453dc4bb7def08c0983e765a83269992e92fc185140f44
Size

320KB
MD5

a13bbd9d1873a09eeb41c0f4ee808a20
SHA1

6d9b8a82962f805c11491b518439724666dd7a80
SHA256

fd76585a6912926ba5453dc4bb7def08c0983e765a83269992e92fc185140f44
SHA512

df71d1497606a0e0893114bde760dbacd9eaca46f043833193c178d20e8bdfc27a0086dea6cdc635433888acd0c620c2fbe1259fbbf47f17aee6fe504426e239
SSDEEP

6144:WmmmmVpsgSiyH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:WmmmmV6Vz2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

fd76585a6912926ba5453dc4bb7def08c0983e765a83269992e92fc185140f44
.exe windows x86

b9aa0f2246c6191e1e218032d6ae16b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
GetConsoleScreenBufferInfo
SetConsoleOutputCP
GlobalCompact
SetProcessShutdownParameters
GetQueuedCompletionStatus
GetVolumePathNamesForVolumeNameA
OpenWaitableTimerA
Process32NextW
ExpandEnvironmentStringsA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE