de67b92245e034343b0c0d5eac2cf7d69bbbda67d84459042691cc4683f9f12f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de67b92245e034343b0c0d5eac2cf7d69bbbda67d84459042691cc4683f9f12f
Size

92KB
MD5

8c7250a638e0bb4362ebbda8d9b01ebb
SHA1

4a53f38a653cd2814f8b17265532abd1fec03b3d
SHA256

de67b92245e034343b0c0d5eac2cf7d69bbbda67d84459042691cc4683f9f12f
SHA512

e1472913e2375602e4b2a6f56860c5ad20d5193d3930351cb7a4b1597ea13edff93f6d325a94d362b722e503bdabac15e49b4cd52371f5fbe9ae119005e4de79
SSDEEP

1536:pL6Kq4VWiaU4pB582wsyPHVqgNTYumtjEErxTWDTMqhGKYIZTET8u5j65UlFWh8u:EaVW40tw9BNTY3tjBkMqhGKZTbuwgWW

Score

N/A

Malware Config

Signatures

Files

de67b92245e034343b0c0d5eac2cf7d69bbbda67d84459042691cc4683f9f12f
.exe windows x86

c29d78373f94019527616ae06d5d4de7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateJobSet
SearchPathW
ConvertThreadToFiber
VerifyVersionInfoW
OpenFileMappingA
RegisterWowExec
VirtualFreeEx
GetLongPathNameW
GetLocaleInfoW
FindResourceExA
Module32Next
QueryInformationJobObject

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 26KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE