494a2a72cdcb566b510e819c59bad13ea5218bea3d6579a69e4632a9d5ee903b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

494a2a72cdcb566b510e819c59bad13ea5218bea3d6579a69e4632a9d5ee903b
Size

489KB
MD5

072d2d3d48f3638822ef7cec99f1b420
SHA1

affa95281b80c0eecb6feb6b96dfc74dcb8f9167
SHA256

494a2a72cdcb566b510e819c59bad13ea5218bea3d6579a69e4632a9d5ee903b
SHA512

bab3184c767682846ef5baef28bd65c407d7cf73a6a89a87a095b191932c9ce229fa98ed366666a3b77916e9d8404922e2733ed1c2c52b0df46af3ae5a8275b6
SSDEEP

12288:H5bh3iP/QFXw5lGRNBu2uC65p1YDRp+D8zfkqbnsB5bE:H7yP/gX9zs/1Yjgy

Score

N/A

Malware Config

Signatures

Files

494a2a72cdcb566b510e819c59bad13ea5218bea3d6579a69e4632a9d5ee903b
.exe windows x86

2a5635238863fd9b5815c79ec6dcc944

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleCursor
UpdateResourceA
GetUserDefaultLCID
GetCurrentThread

ntdll

RtlValidSid

Sections

.text
Size: 482KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 241B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE