ed3f3943bc71954941ba963bf272ab21c6f67ddbb826074eb71a7c67cc3a0b11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed3f3943bc71954941ba963bf272ab21c6f67ddbb826074eb71a7c67cc3a0b11
Size

56KB
MD5

3d3892c7f6c68326ca60fcadc2427f10
SHA1

8df041cc659010c44d81756859ad80f883b36a25
SHA256

ed3f3943bc71954941ba963bf272ab21c6f67ddbb826074eb71a7c67cc3a0b11
SHA512

178ed48dfe3ecfc2a60d4abf9fc09c68b211663444f423422ec283fdb60f2868d8bcd7f343a990ba207e83007985dde421e83c490483b6ba2e612d67b15c2191
SSDEEP

1536:7uvG3S/q3T23Wc/Xclk/1kRT+v8xdk40Ag3:qvG3Sy2Gc/Mm/1kl5bO3

Score

N/A

Malware Config

Signatures

Files

ed3f3943bc71954941ba963bf272ab21c6f67ddbb826074eb71a7c67cc3a0b11
.exe windows x86

814c1751ca21dc03bc5dbf39886675d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LZRead
FatalAppExitA
Sleep
FreeLibraryAndExitThread
CreateJobObjectA
LZCopy
GlobalUnlock
GetThreadPriority
SwitchToThread
lstrcpyn
GetConsoleTitleA
FindAtomW
GetEnvironmentStringsA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE