136fcd33090b8958f1327ee58a23b216bc76a05a62add2f992f303b9321a1628 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

136fcd33090b8958f1327ee58a23b216bc76a05a62add2f992f303b9321a1628
Size

119KB
MD5

98abbffd4b3045202d6c34a5020837d6
SHA1

0b483d31709f9b77bbb35d2dc6498a007e73f156
SHA256

136fcd33090b8958f1327ee58a23b216bc76a05a62add2f992f303b9321a1628
SHA512

c836827b856335a8e97a9d7c880cf3d925b21d1b1bb65e19ee0684686a7e969d570bd90a6755b28f481eeaa13dabc032e05950ed9619f7de1d860bd02b45e131
SSDEEP

1536:Vm0ghXBh3oHlkEJJFkT6K6Pzpp2G+3EM9Yx/EpjVrs2ryrd1vUQuqSSqK5tnCvv:JcXj3+k8JOT6Bz3W39Sx/EHs2qxnC

Score

N/A

Malware Config

Signatures

Files

136fcd33090b8958f1327ee58a23b216bc76a05a62add2f992f303b9321a1628
.exe windows x86

fe6a8ebd08cc6857f97465fec89d722a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BasepCheckWinSaferRestrictions
GetPrivateProfileStructA
DisableThreadLibraryCalls
Process32Next
GetConsoleFontSize
GetSystemWow64DirectoryA
CreateProcessInternalWSecure
GlobalWire
GetCommandLineA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 63KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE