ee5c8faa807c8a0a6bda13bb463e609620905c9dc61b90fc1898cc12ba8f8a08 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ee5c8faa807c8a0a6bda13bb463e609620905c9dc61b90fc1898cc12ba8f8a08
Size

66KB
MD5

0aadf1c952bcc22a301bf6e5aef8c288
SHA1

0efa39554a0eed7123037fa88187eccaa36e95c9
SHA256

ee5c8faa807c8a0a6bda13bb463e609620905c9dc61b90fc1898cc12ba8f8a08
SHA512

54ae448633b92e03050969713a95e125ab157fab094a2fc368bd0275a491685b6f700b770905a650d514d7aa68e8a28d85fcbc08ad32dc1524081709bfa5deed
SSDEEP

1536:isVqBbyJKw+nlTTaZg50Hoz3avR9DHMJEAYdd1VVW9iY6H8LriFi:HQB+JKw+xgxHY3avjfzVVW9iNH8LW

Score

N/A

Malware Config

Signatures

Files

ee5c8faa807c8a0a6bda13bb463e609620905c9dc61b90fc1898cc12ba8f8a08
.exe windows x86

e6f6fd46722fca94a20d9a26ff6592fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateHardLinkA
GetLogicalDriveStringsA
OpenFileMappingA
IsBadCodePtr
GetConsoleDisplayMode
GetThreadLocale
WriteProfileStringA
GetProcessDEPPolicy
GetVolumePathNamesForVolumeNameW
SearchPathA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE