2d81568de5ed2a06643af989a0c3b34cd419b849340e206fc88bdd8d73131175 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d81568de5ed2a06643af989a0c3b34cd419b849340e206fc88bdd8d73131175
Size

94KB
MD5

cea1b7485359a6e0ef74ad0f29b1ae37
SHA1

1a31fbadcbcb5f35cc17f30f793b436ddb5bf7e7
SHA256

2d81568de5ed2a06643af989a0c3b34cd419b849340e206fc88bdd8d73131175
SHA512

dc18fc2243f37b1bbd9f0a685015442c757542aafb51b691961d10a43efba02ef6f6209f6ba339c67efdbc207758055505e5c73f12964f00c320b4526545b7f0
SSDEEP

1536:oBfMmnBEmku+yCYI22VwlkhmPwlbo7llc8YaEJwZK4/83ZoMOALF6SSf:zmBVtzCYTiw0mco7llhZEXtpxLF6H

Score

N/A

Malware Config

Signatures

Files

2d81568de5ed2a06643af989a0c3b34cd419b849340e206fc88bdd8d73131175
.exe windows x86

56c3e5b53aa6d129552ab7f3357c596a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VDMConsoleOperation
HeapWalk
GetModuleHandleA
ValidateLocale
CheckNameLegalDOS8Dot3A
QueryActCtxW
WaitNamedPipeA
CreateSemaphoreA
SetFilePointer
GetWriteWatch
SystemTimeToFileTime
GetLinguistLangSize

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE