47015706552e5ac4609e883fdfaa4435540e4fbfdc736c462e0bf5d532322157 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

47015706552e5ac4609e883fdfaa4435540e4fbfdc736c462e0bf5d532322157
Size

63KB
MD5

90efa7fedede58818cb48a9d75e50cc0
SHA1

2eb3e5b89233a0482ae58561281bbf14efd4e1be
SHA256

47015706552e5ac4609e883fdfaa4435540e4fbfdc736c462e0bf5d532322157
SHA512

5f900a9eca0326a96f2fe82ea0e64f770446e1a09d2f976fab649fa1e84e668a92c93a42ff9d4637ba7424d46d2e8b1dbf2456943d795c8ceb4e5a43963a8ae7
SSDEEP

1536:I1b/uSuQlt7vC6NQ4pKlAtFNRV/gfmq+MEEBcoL/5FQ8m:3tQll1NNcfmWWoHQ8m

Score

N/A

Malware Config

Signatures

Files

47015706552e5ac4609e883fdfaa4435540e4fbfdc736c462e0bf5d532322157
.exe windows x86

af3fce3252127f4a02a7beefc3cacd70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LZOpenFileW
GetAtomNameW
SetConsoleCursorMode
LocalUnlock
InterlockedExchangeAdd
DisconnectNamedPipe
RtlUnwind
FillConsoleOutputCharacterA
BeginUpdateResourceA
CreateJobSet
GetFileSize

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE