abfb6f28643ade5bcde1b69cb7f50d8ef30be2f98d340f6596103f9544f6d267 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abfb6f28643ade5bcde1b69cb7f50d8ef30be2f98d340f6596103f9544f6d267
Size

56KB
MD5

96dea6f958ce80ed64e7d74fb9b8e77d
SHA1

3041480b14ac79ca171b9b7f5bf1f8416e4931d6
SHA256

abfb6f28643ade5bcde1b69cb7f50d8ef30be2f98d340f6596103f9544f6d267
SHA512

6761d9019fc61b0bd267683c15a65dbe2cf8c963a5d64e8fe5bd9d546a2a64942d43066aae8fcd151d956ce9ed46edfad8dffb5c9d52f9714628d3f7070ca443
SSDEEP

768:6zkmfLh1bPrE4kprIUugG+JWIFhXKu2AAftFl0yiLm6vO8jjI/btdAq0JH9zxh:qPd1ebhXsfXa766vl0bt+DJH9zxh

Score

N/A

Malware Config

Signatures

Files

abfb6f28643ade5bcde1b69cb7f50d8ef30be2f98d340f6596103f9544f6d267
.exe windows x86

4fa65e197e356290ebc62d02365778d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Toolhelp32ReadProcessMemory
FindResourceExA
GetPrivateProfileStructA
SetVDMCurrentDirectories
FileTimeToDosDateTime
FindFirstVolumeA
EnumUILanguagesA
GetCurrentThreadId
IsDebuggerPresent
CompareFileTime

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE