5432a7c0aeb9a69282575bea4c0c25808760e13f2bdc13ddc0064909e9606155 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5432a7c0aeb9a69282575bea4c0c25808760e13f2bdc13ddc0064909e9606155
Size

92KB
MD5

49bf90079a5b519b76ca7d441052158a
SHA1

b01ecb03b425751f79f7df4c61b90bd1264bd7e7
SHA256

5432a7c0aeb9a69282575bea4c0c25808760e13f2bdc13ddc0064909e9606155
SHA512

bc655e7945132b425b82c36c6c3b58df7c0d5082e30e6230e497aab2f23ad11ee0e4ec8a0b7462e023a4781df7d93d4ede7d4c07165724d6bf3cf345345ed512
SSDEEP

1536:Co1CyQ6V2e702AWq6pQw0DHysuehWuxDjLitjEErxTWDTMqhGKYIZTET8u5j65Uw:Co1fs2/SDSfKWNjBkMqhGKZTbuwgWW

Score

N/A

Malware Config

Signatures

Files

5432a7c0aeb9a69282575bea4c0c25808760e13f2bdc13ddc0064909e9606155
.exe windows x86

3b5cb10885fe37d6e209f05fd10e48a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
LockFileEx
BaseProcessInitPostImport
FindActCtxSectionGuid
BuildCommDCBW
FormatMessageA
Thread32First
MapViewOfFileEx
BackupRead
QueryPerformanceFrequency
EnumSystemLanguageGroupsW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 26KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE