e6eb6db63a7d9d8e75a38f7f82fe0142ea81da96f3ad2aa177de55d2a23055d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e6eb6db63a7d9d8e75a38f7f82fe0142ea81da96f3ad2aa177de55d2a23055d0
Size

76KB
MD5

91fab75b7c1825d3ba4b138a2a2d92c1
SHA1

c444536854cacba466d434abd44efb2542a931df
SHA256

e6eb6db63a7d9d8e75a38f7f82fe0142ea81da96f3ad2aa177de55d2a23055d0
SHA512

2911d18f31918fe9a3c2809a0ac50b6fff18aaa7f10ef172ceb5e2e5ba1031a74f1d18015363c417c942071c3fbf8a0322118d500626be6b16c2b81497036605
SSDEEP

1536:jjn3rX2smtIVtIpZaIg5Q+LCXWOedz8FwzLijx0hpjVrs2ryrd1vUQuq6:v6/6QPgq+LxYFwz+j2Hs2qo

Score

N/A

Malware Config

Signatures

Files

e6eb6db63a7d9d8e75a38f7f82fe0142ea81da96f3ad2aa177de55d2a23055d0
.exe windows x86

a7304066c22ea269058a6cea57b98518

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadContext
SuspendThread
AllocateUserPhysicalPages
CheckNameLegalDOS8Dot3W
InterlockedPopEntrySList
FindNextVolumeA
CreatePipe
PrivCopyFileExW
GetModuleHandleW
WriteConsoleOutputA
HeapFree

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE