d620d00fb5ebec4d4269ecc790a69ba2d2b0a6347bb20765aa7c6be075e9329e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d620d00fb5ebec4d4269ecc790a69ba2d2b0a6347bb20765aa7c6be075e9329e
Size

119KB
MD5

2425751fabcc19c8a81193ae294eac70
SHA1

228485fed9fbbd931b6195774a99e3f0a437450e
SHA256

d620d00fb5ebec4d4269ecc790a69ba2d2b0a6347bb20765aa7c6be075e9329e
SHA512

63f04e7249dcb8d25c9aeb6ed380d074fef437cbd4f450bf4f61c9297ca5627e01d5823e0d0d951bbc684ba1169b760c21582ae474c5a0cfa95a59449ca9f5a0
SSDEEP

3072:Yk8/ahWR+m58BMgYaZaUAG0Ke3nM1AwT8VwWj4AygCIHA:wwWRgiwaUAG03KMVF4XBoA

Score

N/A

Malware Config

Signatures

Files

d620d00fb5ebec4d4269ecc790a69ba2d2b0a6347bb20765aa7c6be075e9329e
.exe windows x86

6e78b8a8095c8bb56539ede160279954

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleNumberOfCommandsW
BackupRead
FindAtomA
InitializeCriticalSection
SetConsoleInputExeNameA
VirtualAllocEx
LocalCompact
RemoveDirectoryA
RtlMoveMemory
GetDefaultCommConfigW
GetPrivateProfileSectionA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE