61ca3709485cf7de666286659f51c714e3827e340729c1144544cf26042a90fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61ca3709485cf7de666286659f51c714e3827e340729c1144544cf26042a90fd
Size

92KB
MD5

73df3c5fb2447ca78d7727d04452891a
SHA1

9331202c60bc85f87c1834781ee9f328e0c7e0ba
SHA256

61ca3709485cf7de666286659f51c714e3827e340729c1144544cf26042a90fd
SHA512

2761be30261cf27a9e06a32f8248fb1000ef4716b7faaf69a3cd7dd709f7bbd808f2aabe88e20f0760c5b0b9c1dc5251b8fa5439cd36e52e1482ee4a23395b7f
SSDEEP

1536:SIXL78RNvcX+FMN//7FcT/QQ7P6SNB4ajEErxTWDTMqhGKYIZTET8u5j65UlFWhP:NZXlZUr7P6SpjBkMqhGKZTbuwgWW

Score

N/A

Malware Config

Signatures

Files

61ca3709485cf7de666286659f51c714e3827e340729c1144544cf26042a90fd
.exe windows x86

6d153e7e0ffce0325dce25456b921890

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExpandedNameW
GetCPFileNameFromRegistry
ProcessIdToSessionId
GetCPInfoExW
InitializeCriticalSection
FindActCtxSectionStringA
GetTapePosition
GetConsoleTitleW
HeapDestroy
LocalShrink
SetMailslotInfo

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 26KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE