741c896170d9c46bea69f4eae89ee7bd8dde324983c17476d8651f194d7e6597 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

741c896170d9c46bea69f4eae89ee7bd8dde324983c17476d8651f194d7e6597
Size

56KB
MD5

2163f3e2e76af15c32b018705ec5d7a0
SHA1

f02f4cc9dbb96d463379f7c71d5441f229d3598f
SHA256

741c896170d9c46bea69f4eae89ee7bd8dde324983c17476d8651f194d7e6597
SHA512

e6fcd27358928964894e1b11c6e720aa78e17d7fd36c33fbebf900280e35eba2cebbed0c1f174513b23eb469be1fca8d56090a494f3b8154956ab8ecb19df29f
SSDEEP

1536:DeaaaasLeRK07f2G6iFlyri0M2dyJNkkUXJVAU8dY1+uNB08:LeRl2eMlE4X7Lt1jv08

Score

N/A

Malware Config

Signatures

Files

741c896170d9c46bea69f4eae89ee7bd8dde324983c17476d8651f194d7e6597
.exe windows x86

360bed684c438d8f213fb0fa2c280795

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PeekNamedPipe
CreateFileMappingW
SetComputerNameA
OutputDebugStringW
PrivMoveFileIdentityW
EnumerateLocalComputerNamesA
BuildCommDCBAndTimeoutsW
GetUserDefaultLangID
RtlCaptureContext
GetThreadPriority

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE