19903e0f8a18eec794c3069cdcd25c052331605bf249012b465621fe97ade9f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19903e0f8a18eec794c3069cdcd25c052331605bf249012b465621fe97ade9f8
Size

320KB
MD5

a1a6eeb45caae41c01e4e20e025403f0
SHA1

c5787cb0b1705a93cbe0acdf6a7af610b770dcf0
SHA256

19903e0f8a18eec794c3069cdcd25c052331605bf249012b465621fe97ade9f8
SHA512

e286d913129d6fc4abe068084463709fa7f10a5813e089c0249d1925779e2c86c556324abf07e5bc6743c66fb091de50b75b703ea540f6d97dc8a711d542cd83
SSDEEP

6144:bGKEn4FBH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:rEn4FJ2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

19903e0f8a18eec794c3069cdcd25c052331605bf249012b465621fe97ade9f8
.exe windows x86

a890cd6eb41d2057a3106012fc95d614

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RegisterWaitForInputIdle
lstrcatW
Module32NextW
LZCloseFile
lstrcmpA
GetNumaProcessorMap
ConnectNamedPipe
BaseQueryModuleData
SetFileShortNameA
DebugBreak
ReadConsoleOutputCharacterW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE