60c3fea99b9b81160a31282043da41865de5290d4d43e5ec887ff99dc636dc93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60c3fea99b9b81160a31282043da41865de5290d4d43e5ec887ff99dc636dc93
Size

71KB
MD5

857d060d28d1e8ac75bce7b021df3420
SHA1

c11fde01e05087a57399fbc5b8a33b079a82b62f
SHA256

60c3fea99b9b81160a31282043da41865de5290d4d43e5ec887ff99dc636dc93
SHA512

b456545a576809f5985c080f785a2116e4dd1055b5ca469839024ea816e6db9b86c4c797d88e2ca6e4886bf55bbe373c9c81827189488c7a10555fcc50265971
SSDEEP

1536:Qrvmb/zJjeWaMruBRYW4pasi+CIonF9GI/i6p1+bRefYvjl9A2:QGJSHMoYxpzi+EF9G0im1bfYX

Score

N/A

Malware Config

Signatures

Files

60c3fea99b9b81160a31282043da41865de5290d4d43e5ec887ff99dc636dc93
.exe windows x86

42cd0ceee468347cd92e689826a4949c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCommandHistoryA
InterlockedFlushSList
GetProcessShutdownParameters
OpenMutexW
TermsrvAppInstallMode
HeapValidate
GlobalFlags
PrivMoveFileIdentityW
GetProfileIntA
GetUserDefaultLCID

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 57KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE