91e64ceb2d6fb1c4d03f86c20ff0064f2274a81d0b80757959162f80d5bdab11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

91e64ceb2d6fb1c4d03f86c20ff0064f2274a81d0b80757959162f80d5bdab11
Size

119KB
MD5

0ee3f50acf18df8a40744e588faf6946
SHA1

b53c2256fcd9f53b28ea231e8b0359aef0568e24
SHA256

91e64ceb2d6fb1c4d03f86c20ff0064f2274a81d0b80757959162f80d5bdab11
SHA512

2d65518b322a1770fe96c718ba0eb1d5ab6d8de1495a8734fb91e8a83139102189644799025328eb77b48a0d6a70158d094b7cb34c09aef090116b5cbb5ddf17
SSDEEP

3072:d90yatn8AdTvHmVOTwKFuiFf3ijea3PNLZG1slDhO:d90/RdrewFuSq1tI6lDhO

Score

N/A

Malware Config

Signatures

Files

91e64ceb2d6fb1c4d03f86c20ff0064f2274a81d0b80757959162f80d5bdab11
.exe windows x86

d17b64abb0a610d5bc76317dc0bdc125

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
GetLogicalDriveStringsW
lstrcmpW
FindFirstFileA
GlobalReAlloc
LocalFlags
GetCurrentActCtx
RegisterWaitForSingleObject
FindFirstVolumeA
GetSystemDefaultLangID
GetConsoleInputExeNameW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE