0a1ec8a1d2f9bcf08e708ec64d5278d174022041977f1bd8af737d2e2d53f479 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a1ec8a1d2f9bcf08e708ec64d5278d174022041977f1bd8af737d2e2d53f479
Size

56KB
MD5

0551b115ab9cb871921627a08b5c2718
SHA1

08371f0db5188f6abb9fe0b3ac84ec4a6bf1fa78
SHA256

0a1ec8a1d2f9bcf08e708ec64d5278d174022041977f1bd8af737d2e2d53f479
SHA512

e8374681cfa2d6d63d58d91b2725165779fd40d958f4d7903846f1252bfea0b8dace63f4b7375908f8a7a182602bc0185fb6dbf04f0bd671548be8de81eb2a5e
SSDEEP

1536:xtBG3UA3wDVtX69+44f6HirzHtSdcXGPS6abVSCAnQe37A8MUiNM7Nxo7ud9UW89:7QL3U06fbJ46v92fQ8LE

Score

N/A

Malware Config

Signatures

Files

0a1ec8a1d2f9bcf08e708ec64d5278d174022041977f1bd8af737d2e2d53f479
.exe windows x86

4a35efb26afa10a32ce0455f6940073c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameW
CreateFileMappingA
DeleteVolumeMountPointW
SetThreadLocale
UTUnRegister
GetTimeFormatW
WaitNamedPipeW
AddAtomW
MoveFileW
ClearCommBreak
GetConsoleSelectionInfo
VDMConsoleOperation

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE