59df18d8b31a623f93a32954f6392cb5bae7d317250ba43c844e62009b619ee4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59df18d8b31a623f93a32954f6392cb5bae7d317250ba43c844e62009b619ee4
Size

76KB
MD5

090eb0c3bb596c6532b71b3360d01dfd
SHA1

b054683e6a9441e9525ea59825c54faad9c38888
SHA256

59df18d8b31a623f93a32954f6392cb5bae7d317250ba43c844e62009b619ee4
SHA512

af9a9553c129eadcff992b23213b04f1db349848ec273edbadc2750664c31ab4c73a83d888faf061fe825241056a8a4ed110d623fd4a1a28be9b8c9662c9e9c3
SSDEEP

1536:yyGkgVgZX4PA3aCmZ+l6k8A8MrpejupjVrs2ryrd1vUQuq6:yyGxVuX4+XmZE6vFDSHs2qo

Score

N/A

Malware Config

Signatures

Files

59df18d8b31a623f93a32954f6392cb5bae7d317250ba43c844e62009b619ee4
.exe windows x86

7f2494a5af5d5b64e482cb94a3064390

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryW
GetThreadLocale
BaseCheckAppcompatCache
FindNextVolumeA
SetComPlusPackageInstallStatus
WinExec
SetConsoleIcon
VirtualQueryEx
GetLogicalDriveStringsW
SuspendThread
SetFirmwareEnvironmentVariableW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE