129005fa27cb5edfd6f0709d840d6aadcb6ba307124e422f289c901a3e465bc3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

129005fa27cb5edfd6f0709d840d6aadcb6ba307124e422f289c901a3e465bc3
Size

63KB
MD5

307ee939a5f3e9f60ca4042ca062d3b0
SHA1

9151057de776490fa9fef1895c0525a734f0d499
SHA256

129005fa27cb5edfd6f0709d840d6aadcb6ba307124e422f289c901a3e465bc3
SHA512

0af24da000ec99f5166b5d4baaa27d1cf4e5ce5c31cab64e3aa03c08b0d1b97e27110a674d84d31fff7ae59b3a7897d86387dca0f3a118bc9fc0c6da10e71a21
SSDEEP

1536:4YHm+zNt7E47SCpyA9kMwXHRgWoVBfIgJRgXTiPcov:4+m+/7E47SCNtQ3oxJR17

Score

N/A

Malware Config

Signatures

Files

129005fa27cb5edfd6f0709d840d6aadcb6ba307124e422f289c901a3e465bc3
.exe windows x86

da0ec6056d11345f2928bcccb1fcfeee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVDMCurrentDirectories
GetHandleContext
WaitForMultipleObjectsEx
HeapFree
LZOpenFileA
VirtualAlloc
HeapSize
VirtualProtectEx
Heap32ListNext
RtlCaptureStackBackTrace
SetUserGeoID
GetPrivateProfileSectionNamesA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE