5147a3bf917d2baa877db41523a1464ba7e50d705a587cf71a8234ce3019d6dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5147a3bf917d2baa877db41523a1464ba7e50d705a587cf71a8234ce3019d6dd
Size

63KB
MD5

401473a7dd1438c4bd3dcbccf86e3940
SHA1

d78ddae2629c250f807ee6dc0ad759ecd57b5b51
SHA256

5147a3bf917d2baa877db41523a1464ba7e50d705a587cf71a8234ce3019d6dd
SHA512

b6636a8fb28fda8d5535a72c802f8d03bd86c18b3b8133c4f30d8cf0b5b1316b346fb1051c5f2d4b3d170432ac537c714f2e5a1adbdb8625f6244dc22b47adcc
SSDEEP

1536:VFgb/hslUNuw0Sx1MfQ1c2EVnbGBqoOBhA3UL1EmCIWpzO0CZbFsfgQWyu:CZxYVn6kJT1EmTWpzrCZbFsf2x

Score

N/A

Malware Config

Signatures

Files

5147a3bf917d2baa877db41523a1464ba7e50d705a587cf71a8234ce3019d6dd
.exe windows x86

ed0d14fa90d3fe7061dac24674d6415e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Toolhelp32ReadProcessMemory
EnumSystemCodePagesW
lstrcpyn
SetThreadAffinityMask
CopyFileA
ExpungeConsoleCommandHistoryA
GetSystemInfo
WriteFileEx
EnumResourceLanguagesA
HeapUnlock
LocalAlloc

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE