130fd2d0fa2a83f8eb061c7a7f833af70cbedacdab89db45956e62f71e47d728 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

130fd2d0fa2a83f8eb061c7a7f833af70cbedacdab89db45956e62f71e47d728
Size

235KB
MD5

0da5642e24558b83a717d6f01fe1fe03
SHA1

938fcce8ae6147561728bfb4370cf709b8bf3c46
SHA256

130fd2d0fa2a83f8eb061c7a7f833af70cbedacdab89db45956e62f71e47d728
SHA512

998958e90c84fe4c433c2f3b8522c90de6eb74506bf9cd260b5edb434e8b8136288f58763defe73a6f48830a1edf8b7e84eb8291cc9a5380eec2fa0615de9b56
SSDEEP

3072:GJVgzpcJi0vSr/fzAUMZNoagBrvIScj3znsdfTSD1GAQq0SqlXDYZkr0qnfetvit:G5i0vSrnzLMZN8BrvZcfnsdf8UptVr1

Score

N/A

Malware Config

Signatures

Files

130fd2d0fa2a83f8eb061c7a7f833af70cbedacdab89db45956e62f71e47d728
.exe windows x86

0ba0bf451cd479794defa8e9230b9bde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushInstructionCache
GetStringTypeA
VerLanguageNameW
RtlUnwind
GetVDMCurrentDirectories
WriteConsoleW
ReadConsoleOutputA
CancelIo
TzSpecificLocalTimeToSystemTime
IsValidLanguageGroup
QueryInformationJobObject

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE