fea8f32836b393bf9010d665499491c0049d1d73295a572ae6eb0e26b77d845e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fea8f32836b393bf9010d665499491c0049d1d73295a572ae6eb0e26b77d845e
Size

119KB
MD5

06ddec58f0579a6bc3916e0d393dcaee
SHA1

6e66f6cfb88525a394617bf394a8d49483546b42
SHA256

fea8f32836b393bf9010d665499491c0049d1d73295a572ae6eb0e26b77d845e
SHA512

f75416bd1a1d06128f9632cb38abe079ef5326be67982ec48b562bf542e4df02f502a0b51f046ec2f0a3c196841b71e62b2da3a51ecff6e903cf7bae34be8aec
SSDEEP

1536:8rnKukg/DreaV5zRs8l1Hu5ieiL0JYRAFFwNfZT5520rnsamtIDgW6s2ol0PA5lO:8JfSskHwdnJK4mHs2qxnC

Score

N/A

Malware Config

Signatures

Files

fea8f32836b393bf9010d665499491c0049d1d73295a572ae6eb0e26b77d845e
.exe windows x86

7d5deba5c047c490d3c74f2c4e0921ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetUserGeoID
DosPathToSessionPathA
InterlockedPushEntrySList
CreateTimerQueue
LCMapStringW
GetConsoleCommandHistoryA
QueryMemoryResourceNotification
OpenEventW
RemoveDirectoryA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 63KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE