e8b29f85a3c0ce4da62673deed651f211592e4e26db5166c61a4bc2ceb557ff3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8b29f85a3c0ce4da62673deed651f211592e4e26db5166c61a4bc2ceb557ff3
Size

83KB
MD5

a196222466eea8f3ab7c7fdc8af12e70
SHA1

3801fbb34276ad6055aa240e735495fa6fbcd4a9
SHA256

e8b29f85a3c0ce4da62673deed651f211592e4e26db5166c61a4bc2ceb557ff3
SHA512

5839fecb94a6b84aad22a2d6b2431c86f92e7830ee1b4feae867d7f949ba51a3f10c5c69d8a92392f6cf6d107a856dbfc5221c0826265c5fb2fa5d978173d17c
SSDEEP

1536:dooaQFmSX2RYOteZhdSeajk0FpmzAsC7eRTwSfNbpjVrs2ryrd1vUQuqPj:iGmSX2WOQSnjFczpbHs2q1

Score

N/A

Malware Config

Signatures

Files

e8b29f85a3c0ce4da62673deed651f211592e4e26db5166c61a4bc2ceb557ff3
.exe windows x86

2b29bf27737d5ded3be26ffb922212e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LZCopy
SetComputerNameA
ChangeTimerQueueTimer
SetConsoleNumberOfCommandsA
IsBadHugeWritePtr
DeleteVolumeMountPointA
CreateRemoteThread
GetCurrentProcessId
FindNextVolumeA
GetConsoleCharType

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE