0b4e2c754382463226199878f4ba3ba655e5c70a7af8dd2548604f27aaa2e0ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b4e2c754382463226199878f4ba3ba655e5c70a7af8dd2548604f27aaa2e0ee
Size

443KB
MD5

92fee91c4389002bfc9a250929b66900
SHA1

e7332529e56387041d261d357b6afeed35f15540
SHA256

0b4e2c754382463226199878f4ba3ba655e5c70a7af8dd2548604f27aaa2e0ee
SHA512

6aa9ecc50a8ba257f4ae0ffd603c1b50e9bbb281d80a424f9367c953409b19cf23865c519adc588246502b73c495465b39935e9743a48efdd6cca9520ee8ae45
SSDEEP

6144:Qjg9MaPvONBaMMnS3G2z3P7chPO85J1eRtuWnwNdvs1ExHYL5ZBDm1Fgr6P:Qjgq5Nz3P7chP3ZWKiCxHY1ZBC1FhP

Score

N/A

Malware Config

Signatures

Files

0b4e2c754382463226199878f4ba3ba655e5c70a7af8dd2548604f27aaa2e0ee
.exe windows x86

d281525fa3cc3ff1153bb3f9da7aa523

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendIMEMessageExA
UnloadKeyboardLayout
GetInputState

kernel32

GetCurrentProcess
EnumLanguageGroupLocalesW

Sections

.text
Size: 436KB - Virtual size: 436KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 259B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE