f26335976c6ae382fdb80acc1cf3c34b3f8dc2ffa0162e336f184f434929e7e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f26335976c6ae382fdb80acc1cf3c34b3f8dc2ffa0162e336f184f434929e7e6
Size

128KB
MD5

0f408f7240d685beb8af1acf5f689835
SHA1

c0beac79033c1f6592a65abb95fb188d92b6ef0a
SHA256

f26335976c6ae382fdb80acc1cf3c34b3f8dc2ffa0162e336f184f434929e7e6
SHA512

a26860ce2e74095b7cb68171195e22786415c6fe5775fc1b726ae66297aae993440c83870d288e8d2f6fc89e649b65a8a65ed3caac915ef416e1351d3d2f2c17
SSDEEP

3072:41RpKhmkLxUGoq2dque+YZd3Q7fLWsXir9lEMDFfXx:eRkhXL6G2be+yd3Q7fjCCKFfh

Score

N/A

Malware Config

Signatures

Files

f26335976c6ae382fdb80acc1cf3c34b3f8dc2ffa0162e336f184f434929e7e6
.exe windows x86

549669f84947e8acdb0d2b14e8100bcc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeNameForVolumeMountPointA
Thread32Next
HeapCreate
FatalAppExitA
GetNativeSystemInfo
OpenFileMappingW
ReplaceFileA
ConsoleMenuControl
DeleteAtom
InvalidateConsoleDIBits
GetComputerNameExA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 114KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE