ef5a64c4d25578804284b657636c3140ff74bc0df35b963215e47518b0e18424 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef5a64c4d25578804284b657636c3140ff74bc0df35b963215e47518b0e18424
Size

320KB
MD5

a18160bf645ff6d075e2660671efb060
SHA1

0fac4c7bbaaa1c3450d375f68ecff8b836cb8b7e
SHA256

ef5a64c4d25578804284b657636c3140ff74bc0df35b963215e47518b0e18424
SHA512

4e863a09fa77329684e030248019f8307621770d8ae366e6f3ed5aa75ec730ef76620c58ea8d8c9778ef25a59de7be943613372df7f3d65ae6721f119074d79e
SSDEEP

6144:c+uK4HhO2GKjub5FH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:L4HcRh5V2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

ef5a64c4d25578804284b657636c3140ff74bc0df35b963215e47518b0e18424
.exe windows x86

7d7be05c92b6797544689b5ac3c9e938

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileValidData
lstrcpyW
GetProcessVersion
GlobalGetAtomNameW
RegisterWaitForSingleObjectEx
OpenThread
GetEnvironmentVariableW
SetConsoleTextAttribute
GlobalUnlock
DeleteTimerQueueTimer
GetMailslotInfo

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE