1f4bd0775937a5ca97d9ff9967b8d8ab8e8c0ec7edf8d45eff7902164712ed22 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f4bd0775937a5ca97d9ff9967b8d8ab8e8c0ec7edf8d45eff7902164712ed22
Size

107KB
MD5

2a69a7848530d29b42166bb35ec19560
SHA1

603a5abcba0518483a9e3e47873813d091ea972e
SHA256

1f4bd0775937a5ca97d9ff9967b8d8ab8e8c0ec7edf8d45eff7902164712ed22
SHA512

5d54a5511fd6b383fd5886762d79c6aca30331310a70f422f85503ab24ac6beee5adb23b28827bec5c9613035603908e9eba35bfe94af968b15dabb30b6a29b9
SSDEEP

1536:/dINiKGasrIdNL3m4yFveMZFpjVrs2ryrd1vUQuqQGFNiNwc+c:V7KGafL2dFmMbHs2quGf9

Score

N/A

Malware Config

Signatures

Files

1f4bd0775937a5ca97d9ff9967b8d8ab8e8c0ec7edf8d45eff7902164712ed22
.exe windows x86

e8ef8d9c14566bdb5c3050a4bce427dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetInformationJobObject
VirtualLock
GetTempFileNameA
QueryDosDeviceW
lstrcmpiW
UpdateResourceA
DelayLoadFailureHook
CreateFileA
BaseCheckAppcompatCache
EndUpdateResourceA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 51KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE