b02903308e744429df747aafb7f59bee466fa7737fe5720d3eed305b24355bdc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b02903308e744429df747aafb7f59bee466fa7737fe5720d3eed305b24355bdc
Size

76KB
MD5

0d158a91192658160f2f25659a8a5d9d
SHA1

4d116efbe8ec393d502ed00e91b704336b18a80d
SHA256

b02903308e744429df747aafb7f59bee466fa7737fe5720d3eed305b24355bdc
SHA512

8d55dfce901b92f1689d232756805b67cf650a58648bb571d032725952c7745175364d15135f9686e215fa8f4967929b3841669f2a1353f2ebb7618578073808
SSDEEP

1536:Ci5KX/IsnGGZqI876C/Ar2vrU/zJNptpjVrs2ryrd1vUQuq6:Ci56lnGgJ87t9zULJNptHs2qo

Score

N/A

Malware Config

Signatures

Files

b02903308e744429df747aafb7f59bee466fa7737fe5720d3eed305b24355bdc
.exe windows x86

73692641210149eb4ebb2fb17324bd73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumaAvailableMemory
HeapWalk
Module32First
EnumResourceTypesW
GetCommProperties
SetFilePointer
lstrcmpiW
FindNextVolumeW
FillConsoleOutputAttribute
CreateNamedPipeW
FindFirstChangeNotificationA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE