e1f9815f767ccd0a2e412785161da2d973a2c60ad2ced2b505b55be5aa05c484 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1f9815f767ccd0a2e412785161da2d973a2c60ad2ced2b505b55be5aa05c484
Size

19KB
MD5

45accc00bbc749e67b6d26316bec4dc0
SHA1

d2ee89ead591eac6262ecf76e75e3725f09a3865
SHA256

e1f9815f767ccd0a2e412785161da2d973a2c60ad2ced2b505b55be5aa05c484
SHA512

89481c355b8bc03d5af5c6eebbfc38084aa5e07ee7fc182ab07b06e5e65f2702f46dacda5b0f10d1cc488c3e138d9ba210724d0e675da9f39b6f8dc5fbcf25be
SSDEEP

384:w9wpLuV0DLwrSH2mKLgJvgP9zps7rIY9ULaBivrFXWAhfgczZ:kKLXH2bUgP9zps3IY6LDTFmAycd

Score

N/A

Malware Config

Signatures

Files

e1f9815f767ccd0a2e412785161da2d973a2c60ad2ced2b505b55be5aa05c484
.exe windows x86

7e1284d23b94f5b08c82dae01b66d48e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
GetNumberOfConsoleFonts
FreeVirtualBuffer
WaitForMultipleObjectsEx
GetTempFileNameA
_hread
VerLanguageNameW
GetHandleInformation
VerifyVersionInfoA
EnumLanguageGroupLocalesA
GetEnvironmentVariableA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE