1b856bd5a8b31a7489a47b951a28834adf3104f8723dec1d7c320d9e4f9dffd9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b856bd5a8b31a7489a47b951a28834adf3104f8723dec1d7c320d9e4f9dffd9
Size

56KB
MD5

90549a378d715871dbb993751edb17dd
SHA1

374d8f34fe7718fbff73dd959c9e7e9a0d530e53
SHA256

1b856bd5a8b31a7489a47b951a28834adf3104f8723dec1d7c320d9e4f9dffd9
SHA512

f4a6a2fa2b596f8af04c67b91c3ff137f0fdc1d4632507754b2d60dacd5eee3396e98a7885e8854ba03cf0400df5abcd4ecb7d9e1390eaf969e4543325d601a1
SSDEEP

768:TrTcuaxrqNZpL2yFYtMVuXfKk7CmAIUWyyRaDQrC1+zlB6NO0pTleMisQGFunHkh:TrT1ZJyCepy4C1+j6NO0zeMia4k8Up

Score

N/A

Malware Config

Signatures

Files

1b856bd5a8b31a7489a47b951a28834adf3104f8723dec1d7c320d9e4f9dffd9
.exe windows x86

da44ab2211f3b5a03915597bcb10c809

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualBufferExceptionHandler
RestoreLastError
CreateProcessInternalA
GetFileAttributesA
GetBinaryTypeW
QueryDepthSList
GetProcessHeaps
GetCPInfoExW
NlsResetProcessLocale
ClearCommError
BaseProcessInitPostImport

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE