fc1d402bdb28a3fcd0256c7dbb921cbf0a0beddefce187106826007a33265df8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc1d402bdb28a3fcd0256c7dbb921cbf0a0beddefce187106826007a33265df8
Size

56KB
MD5

0bc8f8e3b5427bf1c2a9e05af47e3f40
SHA1

3c760e88f7a0c693af0b108865452a3253d76a7e
SHA256

fc1d402bdb28a3fcd0256c7dbb921cbf0a0beddefce187106826007a33265df8
SHA512

59fd842e98835e389f48ff8f928166c474876a77b3befbc56fdd0206b7b30b12a2c4c679f81c5cfa96215b8d9664dc3cec460479f4f8e1a89e2958aedc47555f
SSDEEP

768:Dc0i6UnoUB12EHEDh3An+REw9hpSPivgH6Y9PC/0mgZpFoYrmWAQySN5I7st/M80:d5mQJhZbY9W0mIpF7mHtz8/DmVTU5Cz3

Score

N/A

Malware Config

Signatures

Files

fc1d402bdb28a3fcd0256c7dbb921cbf0a0beddefce187106826007a33265df8
.exe windows x86

2fd954d6aa3f55f65ced6bb0f7312c80

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DuplicateHandle
GetTapePosition
CallNamedPipeA
CreateFileMappingA
LCMapStringA
WaitForMultipleObjectsEx
SetEndOfFile
WaitNamedPipeW
CreateFileMappingA
VirtualFreeEx
GetCommModemStatus

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE