4c15750994e66a91bd5a1a254d40cfd75d2c496ad60c9be52832e8913de3d9c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c15750994e66a91bd5a1a254d40cfd75d2c496ad60c9be52832e8913de3d9c3
Size

94KB
MD5

0f35125e2653f5ab6f03b631ab8a2ae8
SHA1

d9b044510aefc610e7fcb8d0f942d719a806251f
SHA256

4c15750994e66a91bd5a1a254d40cfd75d2c496ad60c9be52832e8913de3d9c3
SHA512

3188cc73e6c50f6675670bbaa888e4298858761dce8d195839dbf5ef89dfa7d0e292bb9bb05f7c5a87124c1bf445d6e8064e574e195c58c0b29380993e6d7697
SSDEEP

1536:84j6VAjgFtJcoD/KZtxRUBW8o58EqasONdN6hBc8YaEJwZK4/83ZoMOALF6SSf:Umjg/OgKPEBW8oxqasONdshZEXtpxLFU

Score

N/A

Malware Config

Signatures

Files

4c15750994e66a91bd5a1a254d40cfd75d2c496ad60c9be52832e8913de3d9c3
.exe windows x86

f902d03e0bb12764de7f3556925f99fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsWow64Process
TransactNamedPipe
GetCommConfig
CancelIo
GetConsoleMode
GetProcessHandleCount
_lcreat
GetProcessVersion
SetComPlusPackageInstallStatus
EnumDateFormatsExW
VirtualAllocEx

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE