6db76409ed2b34caad66726e73cdbdd40b8268428a2367440b921eb74a4bc8c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6db76409ed2b34caad66726e73cdbdd40b8268428a2367440b921eb74a4bc8c3
Size

92KB
MD5

87f1848a13ea8fdb121bec04c10e1fae
SHA1

1e5839b37bd8788e7326011cacdb76d2102bdcf9
SHA256

6db76409ed2b34caad66726e73cdbdd40b8268428a2367440b921eb74a4bc8c3
SHA512

3b7186ed2e027625b0db3f3e6c0ca8637bb1cd55e7db53344298708402aa3c0b35e2fc6c191f56ad621e51604cc9b913af6bcc796ce84dc1d5b5314dc1146a25
SSDEEP

1536:Q1gJzzRln1qQ1DNqWQXsAhVO7oJEHjEErxTWDTMqhGKYIZTET8u5j65UlFWh8IUK:nRln1qQRAhYIEHjBkMqhGKZTbuwgWW

Score

N/A

Malware Config

Signatures

Files

6db76409ed2b34caad66726e73cdbdd40b8268428a2367440b921eb74a4bc8c3
.exe windows x86

f3f24547fce7eaad592152fdf0d72f10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualLock
ExpandEnvironmentStringsW
SearchPathW
_hread
FillConsoleOutputCharacterW
ReadFile
CloseHandle
AddConsoleAliasW
ResetWriteWatch
GetStringTypeExA
GlobalGetAtomNameA
SetNamedPipeHandleState

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 26KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE