5d9635ac04fc0de6cadf625cb534eefd6443070e8e29784cdee76d294e6e0282 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d9635ac04fc0de6cadf625cb534eefd6443070e8e29784cdee76d294e6e0282
Size

115KB
MD5

218a6381f973fb9ef4413c8ab998daf0
SHA1

2ebe7fcadd1aeef122c39800304158f08ac36381
SHA256

5d9635ac04fc0de6cadf625cb534eefd6443070e8e29784cdee76d294e6e0282
SHA512

e769a0f3428ccee6ebad3f9663a95db168b7615280402c307808d7c8bc8f58085e8d64bb15f208f5e57ca4e74cec32333e88c364fe9137cb65420832388342c3
SSDEEP

1536:zbPWBBBb5Vxth2Bjqvf3U2w03FHm4WmG5DNdwBNWDXzUYoMmZoiA8A/FIuN46+Ui:zSJe4/w+iwL2RUMWjBkMqhGKZTbzsRg

Score

N/A

Malware Config

Signatures

Files

5d9635ac04fc0de6cadf625cb534eefd6443070e8e29784cdee76d294e6e0282
.exe windows x86

e28882425967edea990f0d228208ee8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyLZFile
GetProcessHeap
PulseEvent
FlushViewOfFile
Thread32Next
FlushViewOfFile
SleepEx
GlobalMemoryStatus
LocalAlloc
SetConsoleWindowInfo
GetGeoInfoW
GetOEMCP
GetModuleHandleA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 59KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE