4916f649fae908192d7ed8b2ac6b4c41f9731316fec55761f3a5e4caff625356 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4916f649fae908192d7ed8b2ac6b4c41f9731316fec55761f3a5e4caff625356
Size

119KB
MD5

5f3e2f4df816863b2f65143e51a0ea10
SHA1

c2b3b50d84102bca63cdeef82730b9346c3b3a01
SHA256

4916f649fae908192d7ed8b2ac6b4c41f9731316fec55761f3a5e4caff625356
SHA512

f47bcaaae70e87f3f5e6f2a18a39ccd927a4d2e726bd213ccd47817ab853b323dfba6b030a72162a9c2078cdba2c265bb2757e9dae00d7cc944b1dc1c7613556
SSDEEP

3072:9B5YjVlwy3kB26L5ZwEqmNHmjnW/bVNNsWoEI+zpGy:b5YjVk2KHwEqeHYUl1x4y

Score

N/A

Malware Config

Signatures

Files

4916f649fae908192d7ed8b2ac6b4c41f9731316fec55761f3a5e4caff625356
.exe windows x86

497bbb4623e58cbf6fe7e6f832264143

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessTimes
WTSGetActiveConsoleSessionId
IsBadWritePtr
ReleaseMutex
WriteProfileSectionA
OpenFileMappingA
CreateWaitableTimerA
LockResource
RequestDeviceWakeup
SetComputerNameA
EraseTape

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE