ab5efc0d627d29d191723cff776d0b0046496aaa9564610d56ef68b72a0e658b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab5efc0d627d29d191723cff776d0b0046496aaa9564610d56ef68b72a0e658b
Size

76KB
MD5

1e8d50fe3c8bb83a238337bd7dcef1b7
SHA1

5e16d530c894fe7bec5ffb2c874e311c688d5a30
SHA256

ab5efc0d627d29d191723cff776d0b0046496aaa9564610d56ef68b72a0e658b
SHA512

58adc88236578cce2b547ab42fb75de0fb7c7c5024756ef54c8de847384dc0316c7af10f97dbf3aa1eb4428458436b2e507eeace25165cdb8a1cadadf06bc7c9
SSDEEP

1536:svSDveXZGJRHjtLk3ITk5e4UuaaxovCaqHdxjEErxTWDTMqhGKYIZTET8x:2SDWJGJRDy3IA517xoNCvjBkMqhGKZTF

Score

N/A

Malware Config

Signatures

Files

ab5efc0d627d29d191723cff776d0b0046496aaa9564610d56ef68b72a0e658b
.exe windows x86

d4d005a54b14895795613b6e706341a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualBufferExceptionHandler
IsProcessInJob
TlsGetValue
lstrcmpiW
GetPrivateProfileSectionNamesA
GetDevicePowerState
GetPrivateProfileIntW
GetConsoleAliasExesW
lstrcatA
BeginUpdateResourceW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE