5218dbe6b8b5cf7329b8d400a0188e26f4abbbfad6d8eff8d502412d38820fe6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5218dbe6b8b5cf7329b8d400a0188e26f4abbbfad6d8eff8d502412d38820fe6
Size

71KB
MD5

c453e1e5f188173ea789ff75839056b3
SHA1

9eee0e85380057a7a644a04e58e690477a9bc1d1
SHA256

5218dbe6b8b5cf7329b8d400a0188e26f4abbbfad6d8eff8d502412d38820fe6
SHA512

f2a652e2941cd581779c937b5a1ba6ee4be01c18f0f18395c3719673fdc8e0bbd3134cbd141f21ed20e99e6849b5bb51fba87f5e0e75d4e453c275e1a7e13b37
SSDEEP

1536:U7Bc8m9pxsOTnPPzrAoYKzSqfYakl0bvl+CgK5xtmCrHzkAb:f8SxBj9nWinnUCz3mCfkA

Score

N/A

Malware Config

Signatures

Files

5218dbe6b8b5cf7329b8d400a0188e26f4abbbfad6d8eff8d502412d38820fe6
.exe windows x86

f2013e5ba2a08d57894608c0b7f9ba4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugActiveProcess
WaitNamedPipeA
ReadConsoleOutputA
HeapExtend
RegisterWaitForInputIdle
UpdateResourceW
CreateTimerQueue
WaitCommEvent
SetConsoleFont
lstrcmpiA
RemoveLocalAlternateComputerNameA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE