d6c550461e09f93c653fef461cf7b50a3c927f55d2f4fd12dcac3d3d36c6495e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d6c550461e09f93c653fef461cf7b50a3c927f55d2f4fd12dcac3d3d36c6495e
Size

91KB
MD5

21d64e39bc0e96d8dc90f4cf28cc971f
SHA1

be88288acc5c7eb972772c3b74e74491d04593f0
SHA256

d6c550461e09f93c653fef461cf7b50a3c927f55d2f4fd12dcac3d3d36c6495e
SHA512

d5fb9207308723f9ff2baf1051014d856fda22ae071d208c0929662694a463bbc4a06b0fbbd7177767502df21d5f6044c3b6ed2f87b8584e99a000e64704d654
SSDEEP

1536:zSx2XojKeSvCl/ex3WgL+XgpByFgZVVA3sP5C7YIFcB5Z:zSx2XcmvieggLvDy8VesPI7A5Z

Score

N/A

Malware Config

Signatures

Files

d6c550461e09f93c653fef461cf7b50a3c927f55d2f4fd12dcac3d3d36c6495e
.exe windows x86

e55b7713312aa3beccf3a83478917640

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetBinaryType
ConvertThreadToFiber
GetSystemWindowsDirectoryA
GetLongPathNameA
DebugActiveProcessStop
MoveFileExA
ConnectNamedPipe
lstrcmpW
WriteConsoleOutputCharacterA
CreateThread
GetUserDefaultLCID

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE