e3101438b874c27429850e50d0c56719bf50a4991e9ec4b32d368d3d9d438225 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e3101438b874c27429850e50d0c56719bf50a4991e9ec4b32d368d3d9d438225
Size

111KB
MD5

a1a5e779339624bd25a51495c0c471d8
SHA1

565278b60bebaf5131a793db38a8cc2393eaa8b6
SHA256

e3101438b874c27429850e50d0c56719bf50a4991e9ec4b32d368d3d9d438225
SHA512

4cf33f279bbd5f9643990a08d2eaebc62c68154b6725f86a59191dfd22d005819d926d9115c47ac087e1dd4d3dbd7b1b1873936e55e5d03aeb2d46639cde1151
SSDEEP

1536:YbLheV73XedhsfOgUS+cIfyZJPh08P5xaJ665piCv5agSIWTSOgpNF9hTMvO:YbLM5ES+wN5P5xa55piCvkplmpNDn

Score

N/A

Malware Config

Signatures

Files

e3101438b874c27429850e50d0c56719bf50a4991e9ec4b32d368d3d9d438225
.exe windows x86

500104f4a61fad541da3562fe7c6f6bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenProfileUserMapping
QueueUserWorkItem
SetFileApisToANSI
WritePrivateProfileStringW
SetFileValidData
GetVersion
ReadConsoleInputA
ScrollConsoleScreenBufferA
WriteConsoleOutputA
lstrcmpA
GetCompressedFileSizeA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 97KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cduupqo
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE