0d373d32880b66b86fbb57fd7396a409f57ffaded12ac558f96524624984431e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d373d32880b66b86fbb57fd7396a409f57ffaded12ac558f96524624984431e
Size

83KB
MD5

452a2afc844aeae610df8257a3ec07d0
SHA1

6f8124ce00e8202ea9f6823bc388d452a4424fa8
SHA256

0d373d32880b66b86fbb57fd7396a409f57ffaded12ac558f96524624984431e
SHA512

4be46fe39ba842102b10fb3409669753f3da9f828620166e56413084a5dae75b2692fa0b6452db21649c4c255a115073912f408630dd3bf9fc26f7729e7697f8
SSDEEP

1536:1WWyZOkVfdrFmkOjRhjZC+LQPbR3qyed8PYenluK3TNEhPjEErxTWDTMqhGKYIZj:wJfpmHRtL0N3gIa1jBkMqhGKZTbxk

Score

N/A

Malware Config

Signatures

Files

0d373d32880b66b86fbb57fd7396a409f57ffaded12ac558f96524624984431e
.exe windows x86

38ccec8b32d3f7041689aeaa82f0f2d7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileIntA
CreateActCtxA
VirtualLock
ClearCommError
TrimVirtualBuffer
WritePrivateProfileStringW
DeleteAtom
InitAtomTable
GetTapePosition
PurgeComm
GetNumberFormatW
IsProcessInJob

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE