c312ea018ee6f07fa9d1c4497fde6bd71b01afceb5b09a57f7ce1d396657da61 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c312ea018ee6f07fa9d1c4497fde6bd71b01afceb5b09a57f7ce1d396657da61
Size

91KB
MD5

b14cea32cd4a21b06f1db453b1bdc0d2
SHA1

a57ca65079460ea8c9b3bbbd27f51b2b17f5facb
SHA256

c312ea018ee6f07fa9d1c4497fde6bd71b01afceb5b09a57f7ce1d396657da61
SHA512

ee4910a8b63429a5acb008b60c7abee2af3b3c9e0c21626f207b589faa409aef17580f678ac5d4a73a0928c32117687fea6302a19fc52a14f8dfd5678f1c1351
SSDEEP

1536:kb01bVs+XnzW/RMRK1ZsHS9LRiiYwOMPJufJc4rvc1p8oF6:B1bVCv6OL0lfYkJ/UUoY

Score

N/A

Malware Config

Signatures

Files

c312ea018ee6f07fa9d1c4497fde6bd71b01afceb5b09a57f7ce1d396657da61
.exe windows x86

119213d59017f5c0c4fd7b3e149be4cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ConvertThreadToFiber
SuspendThread
SetConsoleActiveScreenBuffer
Module32Next
WaitForSingleObjectEx
MapViewOfFile
DecodePointer
SetVDMCurrentDirectories
GetEnvironmentStringsW
EnumDateFormatsExA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE