dd0ed22b5fd085588f7ce98d326cc264bde4c03e7d66956db0c5ba8abb2a7db9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd0ed22b5fd085588f7ce98d326cc264bde4c03e7d66956db0c5ba8abb2a7db9
Size

275KB
MD5

90b73f8d5c9179df8efb779e985ba750
SHA1

baca588f870c6809950e52f88163988c0d40c97c
SHA256

dd0ed22b5fd085588f7ce98d326cc264bde4c03e7d66956db0c5ba8abb2a7db9
SHA512

0150c4b00a11a3acc66cb613117247110573f30009dcb959ba2a26b06c8f4c9e289cc2c6217b560068b888d34a5302f8c223f25d4e72c40cc5cfe89294c4cf48
SSDEEP

6144:o4IxiSSLwnYE3/wguJpVopIM/eiG3cE9bAxsfW7q8:o4IxZnpojJ7oaz33O6eP

Score

N/A

Malware Config

Signatures

Files

dd0ed22b5fd085588f7ce98d326cc264bde4c03e7d66956db0c5ba8abb2a7db9
.exe windows x86

ebd284683b2fa8bb6a1c10342f00e58d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
AddLocalAlternateComputerNameW
CreateMemoryResourceNotification
FindNextVolumeA
EnumLanguageGroupLocalesW
GlobalHandle
GetSystemDefaultLangID
lstrcat
CreateVirtualBuffer
DeleteTimerQueue

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE