86901a3abdfa67da090a4807ba29685f7c87700f928c620ff859ce09bbcd8850 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86901a3abdfa67da090a4807ba29685f7c87700f928c620ff859ce09bbcd8850
Size

479KB
MD5

10b584a75765653ba0ac11e71b55f430
SHA1

2966696965745fe27f9bb177ac9289bcf27bce92
SHA256

86901a3abdfa67da090a4807ba29685f7c87700f928c620ff859ce09bbcd8850
SHA512

be37800f18534b5b3d41ff08985ebf220f88c6497c85f9b1e6d149e638666dd74b5e173df523463c3b8fb0cd35b77438fa96d62deee9ed906531f7e08ea9feb2
SSDEEP

12288:aqfWw4UQTCgwYCIFgtOsknYzrhI5OzxFfWT:BMCgBerhIoFg

Score

N/A

Malware Config

Signatures

Files

86901a3abdfa67da090a4807ba29685f7c87700f928c620ff859ce09bbcd8850
.exe windows x86

551e3dd808fe82eb11c547582dacecb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
DeleteCriticalSection
Sleep
TerminateProcess
CloseHandle
GetLastError
GetModuleHandleW

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 236B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ