a2b646868554b549a7243d9763e9d3c00b655e940c015fa5088f3c70d1a34687 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2b646868554b549a7243d9763e9d3c00b655e940c015fa5088f3c70d1a34687
Size

107KB
MD5

a03142450b5d913f29a16b88237aa5b3
SHA1

2b6145c46152c441108e2f141d947c8dd2777058
SHA256

a2b646868554b549a7243d9763e9d3c00b655e940c015fa5088f3c70d1a34687
SHA512

307d778860010f9ff31193307cf83fcc01fe04c11d4620b5f5f63d976259f78c21f32b5d37f158f14e3cd7818c4b5073a0f8128efb1fe2137476a9b06bf77653
SSDEEP

1536:cCGV7e0UcwEdnlP83MQUPdWShKf9Kfb9TEpKthpjVrs2ryrd1vUQuqQGFNiNwc+c:kC0/w+Cu8SAE9YpChHs2quGf9

Score

N/A

Malware Config

Signatures

Files

a2b646868554b549a7243d9763e9d3c00b655e940c015fa5088f3c70d1a34687
.exe windows x86

461d78328f28a3ac8e349282f315fb32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
GetNumaAvailableMemoryNode
Process32Next
CreateHardLinkA
GlobalUnfix
LZSeek
FindAtomA
GetLinguistLangSize
SetFirmwareEnvironmentVariableW
CreateNlsSecurityDescriptor
GetPrivateProfileIntW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 51KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE