81952aae7954caa5dec88039b2d30b141e8a33ca085c0ad64cd115e762513d3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

81952aae7954caa5dec88039b2d30b141e8a33ca085c0ad64cd115e762513d3b
Size

76KB
MD5

8015485001ea9eb681e79f0da4228f10
SHA1

2f52a2fb156722d938bcdd973908740204f370bb
SHA256

81952aae7954caa5dec88039b2d30b141e8a33ca085c0ad64cd115e762513d3b
SHA512

26516d6534d92ded50fb3aca562fab788ef7f9b27625733d5fb0a055f88b54c2b5aa5c2545b67579287f038d703ce0d250dc97976f2eee7ded650da77a810e78
SSDEEP

1536:8OvI6A5MufLP/DyiplwHdp9jgE4pvOVNn7thjEErxTWDTMqhGKYIZTET8x:fQ7jLX+HN2tUN7thjBkMqhGKZTbx

Score

N/A

Malware Config

Signatures

Files

81952aae7954caa5dec88039b2d30b141e8a33ca085c0ad64cd115e762513d3b
.exe windows x86

bbb84b27db89db90a12031006a35ae96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeactivateActCtx
GetNumaNodeProcessorMask
SetStdHandle
GetTapeStatus
Process32FirstW
SetConsoleKeyShortcuts
ReadConsoleInputW
VirtualBufferExceptionHandler
GetCurrencyFormatA
LocalFlags
BindIoCompletionCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE