c5b387d1b6199108799e80e69f1430abba9e662d30c1ece64d78cab7b17608e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c5b387d1b6199108799e80e69f1430abba9e662d30c1ece64d78cab7b17608e1
Size

1.1MB
MD5

0b4b99204da418af93c61f2b2b00eee0
SHA1

5465a4b49f3f90e14cfe92916326de5b8c5ef25d
SHA256

c5b387d1b6199108799e80e69f1430abba9e662d30c1ece64d78cab7b17608e1
SHA512

21296e25018c9ab63a26214b3c7781e1ec6cf79735a3eb1bef7a4a77d27ba1ebf41a5e8f38e313d2a1faf6bd6c9a83dc8dce96ab79817f23e376ca37be551cfc
SSDEEP

12288:zy9xF1oI3Uq7LGay9+MTmU1O2vqGg7yd8y2wuM5rffLpnTTgmiKL3hXIMguXz242:mnHVUjged8ylflnHgjmXRj24GBHt9X

Score

N/A

Malware Config

Signatures

Files

c5b387d1b6199108799e80e69f1430abba9e662d30c1ece64d78cab7b17608e1
.exe windows x86

ef54217c4bb053c3ba026c6c0c4524c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetSystemDefaultLCID
GetCurrentProcessId
GetSystemDefaultLangID
GetModuleHandleA
GetCommandLineA
GetUserDefaultLangID
GetCurrentProcess
GetCurrentThreadId
GetVersion
GetCommandLineW
GetLastError
GetTickCount
VirtualAlloc
WriteConsoleW
LoadLibraryA
TlsSetValue
GetSystemTimeAsFileTime
TlsGetValue
FindClose
GetConsoleMode
FreeEnvironmentStringsW
LocalAlloc
WriteConsoleA
LCMapStringW
DeleteCriticalSection

Sections

.text
Size: 328KB - Virtual size: 327KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 762B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 814KB - Virtual size: 813KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ