0f497cbc7cef0ccf489dbe8d964120792fd8f5b962e6a43a9ba87ba77ec27291 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f497cbc7cef0ccf489dbe8d964120792fd8f5b962e6a43a9ba87ba77ec27291
Size

56KB
MD5

fb71b53d2e2c65c58034f4490cc4cc1f
SHA1

ed5cd63fd40669c10a8323b02a5776a58357f004
SHA256

0f497cbc7cef0ccf489dbe8d964120792fd8f5b962e6a43a9ba87ba77ec27291
SHA512

3ac256d1ac779f5761e33ff688cd8bffb5dc98674d88181aa4194ff779880a94c965cc4074321d7527c59e911d02928402f29c574662eebcfb6e3bc105dbc75f
SSDEEP

1536:awDDDDA6dQjdOgDLXjREJOxyfzPGtQdQ3jX7VEdAF7vqaVn1B7:G30DGtVTX7VEdAtvjnf7

Score

N/A

Malware Config

Signatures

Files

0f497cbc7cef0ccf489dbe8d964120792fd8f5b962e6a43a9ba87ba77ec27291
.exe windows x86

42be491799ec57865eacbedccc93ac7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushConsoleInputBuffer
LocalShrink
GetProfileSectionA
GetProcessPriorityBoost
GetMailslotInfo
GlobalSize
GetFullPathNameA
InterlockedPopEntrySList
EraseTape
CreateFileMappingW
SetEvent

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE