5b60566bfb4f58adaa3454f7deb9a541d280875dc77a614b23eb7c5316ed5b4c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b60566bfb4f58adaa3454f7deb9a541d280875dc77a614b23eb7c5316ed5b4c
Size

320KB
MD5

a19c0f4eeed87ed7b9e9a2cd75d8a1b0
SHA1

ef198ff25d58dceb695ec10df02d54a49fb1ab5f
SHA256

5b60566bfb4f58adaa3454f7deb9a541d280875dc77a614b23eb7c5316ed5b4c
SHA512

e802525ce9dfb3c4bd38f12bf6c70c8c640d910f2bef6b5c4e519191680aa93e609603b89bf9f50604c0fe7983b7393c87ac0d3848b6e475e8cda550dcdff2f2
SSDEEP

6144:MEtc064e5qH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:M1NS2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

5b60566bfb4f58adaa3454f7deb9a541d280875dc77a614b23eb7c5316ed5b4c
.exe windows x86

999482e25d692cef14c6cd37d50c29fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy
Toolhelp32ReadProcessMemory
GetConsoleKeyboardLayoutNameW
GetOEMCP
EnumDateFormatsExA
GetNumberOfConsoleFonts
GetComputerNameExW
GetPrivateProfileStructA
CreateProcessInternalW
NumaVirtualQueryNode

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE