bc8a38709d75570e4729d298c693f16b3c266357937ebeb5b8f4e061e6b13a49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc8a38709d75570e4729d298c693f16b3c266357937ebeb5b8f4e061e6b13a49
Size

320KB
MD5

2014250b380d4ca7a701b7711aa201e0
SHA1

7e9b34bf90f17cddbb425f7d76ab954147846377
SHA256

bc8a38709d75570e4729d298c693f16b3c266357937ebeb5b8f4e061e6b13a49
SHA512

827bb2cf1801c16051e5f9a156254154c757283bef107c069827690b23299b165dbacb03f61f1b4ca2bc3c87273d946f3a14d298973ac9317b3f7ee4493b162e
SSDEEP

6144:D9YlP9qoWKi6H2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:2qlKiI2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

bc8a38709d75570e4729d298c693f16b3c266357937ebeb5b8f4e061e6b13a49
.exe windows x86

b38097c0674cdd5daef9e6d3ede96936

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PrivMoveFileIdentityW
Toolhelp32ReadProcessMemory
SetDefaultCommConfigW
InterlockedPushEntrySList
VirtualQuery
SetConsoleCP
FreeLibrary
WriteConsoleOutputCharacterW
VerifyVersionInfoW
CommConfigDialogW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE