ebde98172fc986b9031b685f28b41da76842330dccb065dbeeee243a0f670b41 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebde98172fc986b9031b685f28b41da76842330dccb065dbeeee243a0f670b41
Size

60KB
MD5

09f85fb5982a32f83994ece517976870
SHA1

fefe58794b1d3d56985b451b998062c986343133
SHA256

ebde98172fc986b9031b685f28b41da76842330dccb065dbeeee243a0f670b41
SHA512

86d09f9c0e1e03be5c923b66a7f7a76d1d8361d8ebdef44ffb2b02611779b6567910202bace7c9982c214adcc617b45649b023ec8f5ea5826eb8f18b576bef9b
SSDEEP

1536:ZvAYkMIBAcOHZmpCOzbiRHfHOmi3y+vmATbQLcW6WYbhZ83Yw:i7MIeHciOmii8gcW6WY/KYw

Score

N/A

Malware Config

Signatures

Files

ebde98172fc986b9031b685f28b41da76842330dccb065dbeeee243a0f670b41
.exe windows x86

a97ae58d2e647ecc2870f13afe0262c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeInformationW
GetBinaryTypeW
IsBadCodePtr
ClearCommBreak
ReadConsoleOutputW
GetWindowsDirectoryW
BackupWrite
GlobalUnfix
QueryWin31IniFilesMappedToRegistry
HeapCreateTagsW
PostQueuedCompletionStatus

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 36KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE