f0b6ae90e648d61e9494f29420c18b816561daab1489c291b047b58937a84b7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0b6ae90e648d61e9494f29420c18b816561daab1489c291b047b58937a84b7c
Size

128KB
MD5

a3ec25001fc8cf53b14cfccaed07bf6c
SHA1

cb49e4ca36641e5f1966fde086472e5748322ad9
SHA256

f0b6ae90e648d61e9494f29420c18b816561daab1489c291b047b58937a84b7c
SHA512

f7bd40ee78a5835cda86d4871f845e58b8b4fdbb776cafd4fe50a5ee48bdeb9ce1460204b87d1af54f293c98e0b1f3eb06f38ecf3adeefe6c945989ca7b36a76
SSDEEP

3072:3noN7//4QxnLxsl2D9ukqAFpMefJNoucInpjkN:3noNj/4ktY2n/pZ3ooI

Score

N/A

Malware Config

Signatures

Files

f0b6ae90e648d61e9494f29420c18b816561daab1489c291b047b58937a84b7c
.exe windows x86

c9b0b1534c714a15a5138491fa06704c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameA
GetLogicalDrives
CreateTimerQueueTimer
VirtualAlloc
WTSGetActiveConsoleSessionId
HeapCompact
SizeofResource
SetCriticalSectionSpinCount
InitializeCriticalSection
SetHandleCount

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 104KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE