0d9d6f53920ed3bb3c72e93bf726c655d62b00f66406f6fbb2d71a509428891f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d9d6f53920ed3bb3c72e93bf726c655d62b00f66406f6fbb2d71a509428891f
Size

108KB
MD5

356a1c789f8197a3f78022dd4b08d9a6
SHA1

f0e157e98d80cd39c316e4403d6e4825b9948f95
SHA256

0d9d6f53920ed3bb3c72e93bf726c655d62b00f66406f6fbb2d71a509428891f
SHA512

a56b9bbb879210d86bc25778e193f7687b24f66a0111fcb78770ede7f3419dade05af83e4e3d2efb1334981371984b614b0b6a80151c2784522eff34a92298ee
SSDEEP

3072:Edq4TciC35nSYvko65JUFmdHKygD1SdjHqe1djJav64:Edq4C0gk/S1MdjHqeHV8R

Score

N/A

Malware Config

Signatures

Files

0d9d6f53920ed3bb3c72e93bf726c655d62b00f66406f6fbb2d71a509428891f
.exe windows x86

3cb8054954c3f0b1297556e24cc53a27

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadContext
lstrcmpi
GetPriorityClass
ContinueDebugEvent
ValidateLCType
EnterCriticalSection
GetCurrentThread
CreateDirectoryExA
TerminateThread
FindActCtxSectionStringA
GetProcessShutdownParameters

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 94KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE