7a820f0027ebea89fb578695f5f2be8f4a1750d6b04bf7ed1c1dbb17ea666923 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a820f0027ebea89fb578695f5f2be8f4a1750d6b04bf7ed1c1dbb17ea666923
Size

119KB
MD5

554541124763819bd9226e23a3830fbc
SHA1

dc1a78bca83de2b2fba857bf830383cc5e68f0bd
SHA256

7a820f0027ebea89fb578695f5f2be8f4a1750d6b04bf7ed1c1dbb17ea666923
SHA512

f917a9bc2a54a6e71c957698f18f29b7e345edca8774b428d0b8299924196620b5ef6fe107b79122737ebcebff02408a2b3fa7b9fe3a3aecd2235129876cf956
SSDEEP

1536:J5uDtfWuWE076UzKsYykfrH8oAJnLnplepjVrs2ryrd1vUQuqSSqK5tnCvv:MBp077K5ymr8mHs2qxnC

Score

N/A

Malware Config

Signatures

Files

7a820f0027ebea89fb578695f5f2be8f4a1750d6b04bf7ed1c1dbb17ea666923
.exe windows x86

dbbfff65a028547c32f4765066d4af7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResumeThread
GetProcessAffinityMask
GetHandleContext
GetConsoleCommandHistoryA
SetConsoleHardwareState
CopyFileExA
GlobalMemoryStatus
lstrcmpiA
GlobalAddAtomW
BindIoCompletionCallback
PrivCopyFileExW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 63KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE