8ff90d39b1dd74a5dd94c7748d0a584d1962be99da9538d1239db1e32bd6caa8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ff90d39b1dd74a5dd94c7748d0a584d1962be99da9538d1239db1e32bd6caa8
Size

63KB
MD5

0c12b593564000eff97d226b182cb3d1
SHA1

e1bfc70fef883c52c642a1169f8fabf422bd654e
SHA256

8ff90d39b1dd74a5dd94c7748d0a584d1962be99da9538d1239db1e32bd6caa8
SHA512

5e6d5bcc448b6bbaa55455734191cd39a78812fe52a8d3767e917f4814c55415cabbd63800792644bd81659de1a1606c5951fee5988575c7ab3fe3cdf52f367b
SSDEEP

1536:or/LTXo17Gn4uq75Bxh424YFAKCuUOp3O6i66hgFCnGIctlCQTNJco:uHo1yn07Hxh4CCGOhEIi32o

Score

N/A

Malware Config

Signatures

Files

8ff90d39b1dd74a5dd94c7748d0a584d1962be99da9538d1239db1e32bd6caa8
.exe windows x86

f96133de341bf5d2e61c011e37723a87

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStrings
SetProcessShutdownParameters
GetConsoleAliasExesA
GetPrivateProfileStructW
TransactNamedPipe
GetBinaryTypeA
TlsFree
SetFilePointerEx
WritePrivateProfileStringA
GetStringTypeW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE