ae63cec2dcf653028b4af39ab8ffac4399c37b6817e1cf311dac992f6ef5e890 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae63cec2dcf653028b4af39ab8ffac4399c37b6817e1cf311dac992f6ef5e890
Size

119KB
MD5

4dfacfecb157bfe7007ffbd72cc10df0
SHA1

ed5b00c893ea4870da8c1376129c0e23a6d222f6
SHA256

ae63cec2dcf653028b4af39ab8ffac4399c37b6817e1cf311dac992f6ef5e890
SHA512

5dad6f031beaeeb6c3ee28d8e9b412b37a7c7796f392051a8b16242a9840b149a3f9a64b73b01ec58a4aeeaa0b622edbfa52c0d95b715e12eb5edc4ffe8fdee5
SSDEEP

1536:oXKroSaCT7Z8NCW6Dj/sKdgVPwNB9pjvSNHgPRWvpjVrs2ryrd1vUQuqSSqK5tnU:o65acg/m0eNBDQHgUvHs2qxnC

Score

N/A

Malware Config

Signatures

Files

ae63cec2dcf653028b4af39ab8ffac4399c37b6817e1cf311dac992f6ef5e890
.exe windows x86

e20f5d87c52a920dbb82fdda7b7eb1a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetInformationJobObject
ReplaceFileW
EncodeSystemPointer
SwitchToFiber
SetFileApisToANSI
GetStartupInfoA
SetFileAttributesA
ConnectNamedPipe
SetWaitableTimer
GetQueuedCompletionStatus
SetFirmwareEnvironmentVariableA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 63KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE