bbcf8f10bb48fbb5f69393487c41a89ae2513f5445c3bb2880b2445d57e411b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbcf8f10bb48fbb5f69393487c41a89ae2513f5445c3bb2880b2445d57e411b9
Size

320KB
MD5

93d30ad0f86680cd31f87440bbec3100
SHA1

ee378062510e92a62a10f9fd667032355b1aa3b5
SHA256

bbcf8f10bb48fbb5f69393487c41a89ae2513f5445c3bb2880b2445d57e411b9
SHA512

8d73a98ddd517c1c09fcf0f10cb59abfdcc97218fd07f89b22e1fdade95e957c63848ea8da1f98732d06604c8e2c8b4763f79a85cc1b67e78d3b250ad4c73456
SSDEEP

6144:RffZQy61H2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:ZZQya2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

bbcf8f10bb48fbb5f69393487c41a89ae2513f5445c3bb2880b2445d57e411b9
.exe windows x86

4e45757d3360ae15b053dcb0e4bd4d7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CmdBatNotification
FindNextVolumeMountPointW
GetCurrentConsoleFont
VirtualUnlock
GlobalGetAtomNameA
SetEndOfFile
DosPathToSessionPathA
GetCurrentProcessId
lstrcpyn
BaseCleanupAppcompatCacheSupport

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE