781ed2ae1ef29df37940388127d2b47d96807c9df78c0816c5f52c4f453c94ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

781ed2ae1ef29df37940388127d2b47d96807c9df78c0816c5f52c4f453c94ee
Size

320KB
MD5

a0a575ef804ff2cd175f4b974b8bdef0
SHA1

f42911a1647613981ec6d62b9701226388e83b48
SHA256

781ed2ae1ef29df37940388127d2b47d96807c9df78c0816c5f52c4f453c94ee
SHA512

2f420fcb1b7139c4831b2cf347c2975a98ab6652e69f49c8d8a289a29462600a154fd7492ff6a0acb21449a08b58d30cb1d24770d5e4e25a793ecf995c2e92b9
SSDEEP

6144:rnvcIfXQaH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:zc9o2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

781ed2ae1ef29df37940388127d2b47d96807c9df78c0816c5f52c4f453c94ee
.exe windows x86

b597d3c4c18e201eceddecc07165b1f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateWaitableTimerW
OpenFileMappingW
LZCopy
UnmapViewOfFile
_lclose
HeapUsage
SetFirmwareEnvironmentVariableA
WriteProfileSectionW
GetVolumeNameForVolumeMountPointA
GetStartupInfoW
EnumResourceLanguagesA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE