b3ef639452c3195f9e8e23c23bf7eb9479f64abe66d453e4c5db73a562cc83cb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3ef639452c3195f9e8e23c23bf7eb9479f64abe66d453e4c5db73a562cc83cb
Size

56KB
MD5

0bff852d8a4d228d9b11d9f277dcee87
SHA1

08e0166f2daaa1297ef031a750ba3d67ae87880f
SHA256

b3ef639452c3195f9e8e23c23bf7eb9479f64abe66d453e4c5db73a562cc83cb
SHA512

01ce00465a391dfdfe5377aeaf1b4bc511b9d1aafeceb5adc650ebd101088e46d5373e47abe4000c11aba4bf872ab855d52466814a5bf7d4edd1cb3f8068f7a1
SSDEEP

1536:ebGpM9PJ1L9LJDW3LaBY1LSn1gE573QUHFa6nH+pfI5:eapKPJt9I3LaB2yvgWa6neK5

Score

N/A

Malware Config

Signatures

Files

b3ef639452c3195f9e8e23c23bf7eb9479f64abe66d453e4c5db73a562cc83cb
.exe windows x86

a357932843c498b029e72b618f900270

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

NlsResetProcessLocale
GetFileAttributesW
GetTempFileNameA
GetEnvironmentVariableW
Process32FirstW
WritePrivateProfileStructW
GetProcessDEPPolicy
GetThreadSelectorEntry
SetCPGlobal
GetConsoleKeyboardLayoutNameW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE