ed11147cba03c6de54fe08a36a4160bef1ec61531fe57949b9dd2a3439bab419 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed11147cba03c6de54fe08a36a4160bef1ec61531fe57949b9dd2a3439bab419
Size

320KB
MD5

a1bbb3a8873a31999f217f429c7f1090
SHA1

487ae3b89a42d7d28e1cff7f20de8a614fe8d634
SHA256

ed11147cba03c6de54fe08a36a4160bef1ec61531fe57949b9dd2a3439bab419
SHA512

8faee0895bd708bb7196bd63d69bfbbadec0e703c85a1230951b912d789e64736f5d7ba3302f49e2b54dd0f8944610696f3e89a9f31c9ee5da2f546f5f1ee4a1
SSDEEP

6144:m+iH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:pg2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

ed11147cba03c6de54fe08a36a4160bef1ec61531fe57949b9dd2a3439bab419
.exe windows x86

75fe43e144944ca4ef05eb44401c9647

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessInternalWSecure
SetLastError
WriteConsoleInputW
BaseCleanupAppcompatCacheSupport
FindFirstChangeNotificationW
GetFirmwareEnvironmentVariableA
InitializeSListHead
VerLanguageNameA
GetCurrentThreadId

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE