542bc96bdd8b9f83708edf6657fdcd68ac6d71b3cbe383b7e0c6fa82064ab6f5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

542bc96bdd8b9f83708edf6657fdcd68ac6d71b3cbe383b7e0c6fa82064ab6f5
Size

56KB
MD5

81145c88545d87cdf5ca9b9b0926c521
SHA1

61073f64c030d8a5292041686a25e947691af739
SHA256

542bc96bdd8b9f83708edf6657fdcd68ac6d71b3cbe383b7e0c6fa82064ab6f5
SHA512

e1d19b0e9e1fec27330e811729aead7a82eef30f663cd18ee4c786ccc22aec8b7158109e76befb0ed1b1413b4541ed53b22b552d910d3ca2044cdf6ef9bd2522
SSDEEP

1536:bWSOfv+G5w092kuE7usyxQ2T8N2+L8dec71:iSOfvLw0IkuE7MQY8w+G71

Score

N/A

Malware Config

Signatures

Files

542bc96bdd8b9f83708edf6657fdcd68ac6d71b3cbe383b7e0c6fa82064ab6f5
.exe windows x86

a195a7cd6971a5df4cc894f3ea96a656

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMailslotW
CompareStringA
GetStdHandle
GetFullPathNameW
CloseHandle
FindResourceExA
CreateDirectoryA
CreateJobObjectW
RtlCaptureContext
GetSystemTime
SetVolumeMountPointW
GetLinguistLangSize

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE