1e38a378b65be1727bac566195f026ce9430626f0b5e4dc60fa8cabdeae794b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e38a378b65be1727bac566195f026ce9430626f0b5e4dc60fa8cabdeae794b4
Size

56KB
MD5

eec975e3209e351892f03780b7bbbcc7
SHA1

16623012543c4cf743bdff1587261a3389b4dba8
SHA256

1e38a378b65be1727bac566195f026ce9430626f0b5e4dc60fa8cabdeae794b4
SHA512

aa543df7b3b2fde32a3c4f3b7878aa32cb6a377f82076c3e46bf4614ee369f5962f3a04e319ea3490ef576639e5946fad75fdcc1b326b777b08c2a602b6a6c17
SSDEEP

1536:546xH1TNEfoTZPC0sY/ld98uQYec+302ifiYyH92or:zl2f0yu03JifipH92or

Score

N/A

Malware Config

Signatures

Files

1e38a378b65be1727bac566195f026ce9430626f0b5e4dc60fa8cabdeae794b4
.exe windows x86

ba740a6d895d672f774cb0888a1a6cb8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ZombifyActCtx
ReadFile
SetUnhandledExceptionFilter
ReadConsoleOutputW
SetFileValidData
Thread32Next
LZCopy
QueueUserAPC
GetModuleFileNameA
GetTickCount
GetConsoleAliasExesLengthW
GetNextVDMCommand

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE