71f5eca799f73f6879ef7c16e0631fea493f422cdc66e92300d1aa16a02c325f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71f5eca799f73f6879ef7c16e0631fea493f422cdc66e92300d1aa16a02c325f
Size

56KB
MD5

04aaf295c4ee0589aa0f64e42db9fa94
SHA1

14e240b5e0a68a793f1a81414f418506d5edcf4f
SHA256

71f5eca799f73f6879ef7c16e0631fea493f422cdc66e92300d1aa16a02c325f
SHA512

5b68442bcc933dffdb1d8bae37966fbfd1c555b3690131fb886a56d0c0d922d868fcb1ca4512c850900b67ffdb167bf175a7ab9034ccc415b7d108dbab9dae1c
SSDEEP

1536:6RfC7aUyJ9g+4uGZeql27unNf2OkNPua9IY87cs1/JZg:6RfsNys+47eL7unBkNtIY8RhZg

Score

N/A

Malware Config

Signatures

Files

71f5eca799f73f6879ef7c16e0631fea493f422cdc66e92300d1aa16a02c325f
.exe windows x86

552c830cf96e6ff93af795d449ff5414

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveVectoredExceptionHandler
CreateFiberEx
ExtendVirtualBuffer
GetCPFileNameFromRegistry
WaitCommEvent
GetNumaHighestNodeNumber
SetFileAttributesW
DefineDosDeviceA
GetVersion
ReplaceFileA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE