849d367c174b19b8e924fde72e0af53a533eeb196e52f9129ce3431e5947c506 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

849d367c174b19b8e924fde72e0af53a533eeb196e52f9129ce3431e5947c506
Size

63KB
MD5

46c1a89be2943243ddb3e2adf461b2c4
SHA1

93ab3272b1ba102e67c2dfd5a9bb6447d5f0d46d
SHA256

849d367c174b19b8e924fde72e0af53a533eeb196e52f9129ce3431e5947c506
SHA512

2a4165c8b18828f68580f25e7f908f62dcf01c73b93870d04781212e940c31778742434f1a7cae389dfbca6392bc6b462f057dae1c161d31e613b18a6dc258c4
SSDEEP

768:cZAeWmc8ROZWpYVCwSbivH9IQXjzmF1PRBhWhYCl6QfwQacCsbt9ZhKWJShPvlNO:oAv6INfs1PtgYCLiY9ZnJS9XJoSJOuS

Score

N/A

Malware Config

Signatures

Files

849d367c174b19b8e924fde72e0af53a533eeb196e52f9129ce3431e5947c506
.exe windows x86

5a1caa75d916752c7cd50d2173cd13fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
_lread
ReadFileEx
AddRefActCtx
GetSystemDefaultLangID
LZSeek
LocalUnlock
WriteTapemark
MulDiv
GetVolumePathNameA
DeactivateActCtx
WaitForMultipleObjectsEx
DeleteFileA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE