004f0bfe372fad4a68b25ddc706ec7eef57958682b34b4c7e0dfbd1cbf41e30d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

004f0bfe372fad4a68b25ddc706ec7eef57958682b34b4c7e0dfbd1cbf41e30d
Size

79KB
MD5

0430dee8ae84c5bfa4cc8597a467aac8
SHA1

87e6a2486b5bc471ff766fecc55bda1629700360
SHA256

004f0bfe372fad4a68b25ddc706ec7eef57958682b34b4c7e0dfbd1cbf41e30d
SHA512

37b18b56959f965bdf35e6d0b8a4253ba1fa677421d7e4cfcedfaec404051c938c6f288939394af4276a87a86064130ecd9bfe2dc9c31470e9094325eb3b25a0
SSDEEP

1536:+LM0tcF0RzHZHD3WsAh4abnRsZf/5ZU/MaU9+/erH5/gS/WiISc4:+Fp5HDGsAhhbRQf/5ZBairvISc4

Score

N/A

Malware Config

Signatures

Files

004f0bfe372fad4a68b25ddc706ec7eef57958682b34b4c7e0dfbd1cbf41e30d
.exe windows x86

79f9fe499ef4520837d92dc02745f466

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
ChangeTimerQueueTimer
QueueUserAPC
SetSystemTime
SetConsoleInputExeNameW
GetBinaryTypeA
ResumeThread
DecodePointer
FindNextVolumeW
LoadLibraryExA
GetProcessVersion
FindFirstVolumeMountPointA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE