9797ef6c72ce58fd9cc9228efc535a8876f5855af0ad3e14c38b174b51190029 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9797ef6c72ce58fd9cc9228efc535a8876f5855af0ad3e14c38b174b51190029
Size

92KB
MD5

1892c6ea66d40bbb16b3b2abc6932497
SHA1

682639da98d2c4e824a5ef7cf498d0e75c947394
SHA256

9797ef6c72ce58fd9cc9228efc535a8876f5855af0ad3e14c38b174b51190029
SHA512

e75db9723772c6bf3942341136e54e5c697bf438a551d27c9be366af2c5bf3dc9befaf2d5ff0ac9cbae0ba315dadaf468aefaf5b39d2b12c4004e918aad14d75
SSDEEP

1536:FJuC28OswNB6frgiUAd92DS8DwqRpx+ru8ciyNjEErxTWDTMqhGKYIZTET8u5j6d:HNYA/98Dw6x+rDyNjBkMqhGKZTbuwgWW

Score

N/A

Malware Config

Signatures

Files

9797ef6c72ce58fd9cc9228efc535a8876f5855af0ad3e14c38b174b51190029
.exe windows x86

e3ccecb53cf464f65a41487c5df1d4e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleInputVDMA
SystemTimeToTzSpecificLocalTime
_hwrite
InitializeSListHead
DeleteAtom
OpenJobObjectW
GetUserDefaultLCID
GetSystemDirectoryW
GetProcessAffinityMask
TermsrvAppInstallMode

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 26KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE