04dad56b5bde89fadc619088f55596e059343f0c6c010f158d46e2231c3d732d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04dad56b5bde89fadc619088f55596e059343f0c6c010f158d46e2231c3d732d
Size

983KB
MD5

08b72317b2bade9369a8f6cfc4afba40
SHA1

66cc7486271a1a514d97ec10c988991b80bcc9c2
SHA256

04dad56b5bde89fadc619088f55596e059343f0c6c010f158d46e2231c3d732d
SHA512

eaf0c4319d4a56218925ba6c9a9e97b980b6beef52cbd68a70adb3cd328d1f89e0036a7645b9941015f94d27d73177150159154bfe9222cf305fac2e8530bba7
SSDEEP

24576:7TnDISvGgITBne0lonkuPUjGih0y6pFqEVE4JGTh:TRGgkRl1iiWBFqEVEp

Score

N/A

Malware Config

Signatures

Files

04dad56b5bde89fadc619088f55596e059343f0c6c010f158d46e2231c3d732d
.exe windows x86

632de31d6a360e0c48689f1d1e2c3c95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtReplyWaitReceivePort

user32

GetMessageExtraInfo

kernel32

GetSystemDefaultLCID
GetCurrentProcess

Sections

.text
Size: 981KB - Virtual size: 984KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE