e86cf60f393c0e1ed53499f5cae85dd8d1b115da0a6d1279a36a898165e3f220 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e86cf60f393c0e1ed53499f5cae85dd8d1b115da0a6d1279a36a898165e3f220
Size

111KB
MD5

0c3fe863b124448ecec94d77103da240
SHA1

eb450e6ad1a7547c1d86d8da3e80e485e3887726
SHA256

e86cf60f393c0e1ed53499f5cae85dd8d1b115da0a6d1279a36a898165e3f220
SHA512

4250f6bee9305576b2d2d80c566dcd867873422d3e13909cccd8e6f98666fb5c46fa3f6c6967607d7e42829c84c6e2815bed9cf2c9611df046c0ded936fea13f
SSDEEP

3072:N42qBTV+FhL3mFPEK1K0wvHs2qpP8Lpfk:N4228F93tKs0wfOULpM

Score

N/A

Malware Config

Signatures

Files

e86cf60f393c0e1ed53499f5cae85dd8d1b115da0a6d1279a36a898165e3f220
.exe windows x86

e5c1418b1f15ed5bff770aa638464556

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableW
DeleteVolumeMountPointW
lstrcpy
BaseProcessInitPostImport
GlobalFix
Heap32ListFirst
Thread32Next
SetLocalPrimaryComputerNameW
FindActCtxSectionStringA
DebugBreakProcess

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 55KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE