99a714f14712e15287000c25bbd5c6cb7cc663aa147ec1c8dbf30ab0bcc73481 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99a714f14712e15287000c25bbd5c6cb7cc663aa147ec1c8dbf30ab0bcc73481
Size

73KB
MD5

5261a9bd855c28fad93913b533e980ac
SHA1

703a5cf9b44e9b8c5d38224481bd9e83f5372f23
SHA256

99a714f14712e15287000c25bbd5c6cb7cc663aa147ec1c8dbf30ab0bcc73481
SHA512

5855355590415502b07ebdf7be0e1ff66010b5164847091dc78f9cb1dbb8f3ce39977d6449c9ac2f290a833f85fa0316e3a5b2114aea0878cebd37073d2d3bbd
SSDEEP

1536:/RHkRTMPYveJz+EPyual64lvL2UkrFT8jIlob9ReUriHd0I5qer6+/z/xpNLWje:/yZMPpRcualdlvaUkrFT8+Mt29eE/d3l

Score

N/A

Malware Config

Signatures

Files

99a714f14712e15287000c25bbd5c6cb7cc663aa147ec1c8dbf30ab0bcc73481
.exe windows x86

09ec3775a261e3a3cc4e8a9f6b8d5fe4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNlsSecurityDescriptor
EncodePointer
SetComPlusPackageInstallStatus
LocalAlloc
FindClose
TerminateJobObject
GetBinaryTypeA
AddAtomW
ReadFileEx
EnumResourceNamesA
CopyLZFile
LocalFree

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 58KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE