2681030c1f272439833d8de99577e0609228402d71315345b792c75b4c866e40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2681030c1f272439833d8de99577e0609228402d71315345b792c75b4c866e40
Size

94KB
MD5

d535ef924df07cd9023eb52dac94579d
SHA1

bae16c383de7f2593baa153304544adf907b7900
SHA256

2681030c1f272439833d8de99577e0609228402d71315345b792c75b4c866e40
SHA512

d613046e36b73f9d77d9a4665eaec7c26bfdf620b822fb3525315944488df32616f4cc058b38d52b2b4188b38a5b096f897ed231476fee821404fd27e472d196
SSDEEP

1536:9G/1OrhIVg2SQG9xXKLMvtyYaWp6/V566Lw5PrY+8/c8YaEJwZK4/83ZoMOALF6/:9s1OGS2m9Q4voY1Q26Lwt7KhZEXtpxLa

Score

N/A

Malware Config

Signatures

Files

2681030c1f272439833d8de99577e0609228402d71315345b792c75b4c866e40
.exe windows x86

92bf094fa69bc9baf5c65855a3312c9c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ScrollConsoleScreenBufferA
DosPathToSessionPathA
SetConsoleTextAttribute
Module32First
Sleep
GetQueuedCompletionStatus
GetLongPathNameA
HeapQueryTagW
OpenConsoleW
EnumResourceTypesA
Module32NextW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE