5a89ae7a004f9bdafdbd263998c62ef962c4bc34fba74fbd2f9304a53e9603aa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a89ae7a004f9bdafdbd263998c62ef962c4bc34fba74fbd2f9304a53e9603aa
Size

56KB
MD5

213b3b5a846fd66379d2723b4c0866e0
SHA1

bc9a0c092804da3fef72ced40bff22cbe0c8355f
SHA256

5a89ae7a004f9bdafdbd263998c62ef962c4bc34fba74fbd2f9304a53e9603aa
SHA512

ff7ecee6d5e53a7406173dfde31b8c17b87d166ead94c9dbc8deb5072fe98748bd09cdb6bc69b8db361cb9dcedb46c2239cd6fcf994a66b2ae8dc4b638c884c4
SSDEEP

768:D8Q/xyHbuuIuovTlfJ2S+LG5riq7EGvDuz3ucZsiy43XyBp8I1UUs+pADyWzg8sy:jxy7uuHL1q23Ty4nK7a+p0Jzg8smCaxF

Score

N/A

Malware Config

Signatures

Files

5a89ae7a004f9bdafdbd263998c62ef962c4bc34fba74fbd2f9304a53e9603aa
.exe windows x86

93f1be64784080bb4e729e7216d5e826

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LZCloseFile
IsWow64Process
FlushFileBuffers
FoldStringA
UnregisterWait
SetConsoleCursor
SetFileShortNameA
LZInit
GetEnvironmentVariableA
FindFirstFileExA
_lclose
AddAtomA
SetClientTimeZoneInformation

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE