49db483905c7978b452fd0d91b667928c001c5053d292a053faa18105984933c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49db483905c7978b452fd0d91b667928c001c5053d292a053faa18105984933c
Size

91KB
MD5

8f996bb08010d51c57148f402720f031
SHA1

1921081025a8ffd5e4dadd4403a814b5f825ad00
SHA256

49db483905c7978b452fd0d91b667928c001c5053d292a053faa18105984933c
SHA512

c5e78c1c4116ee0e3875bd314dfe579a8e6b2a9bea352412ff92f1119ea9991793dcc907324eaea5529ffe9b7e968d2a2003cea30d5840ba5dad8b1cc5134101
SSDEEP

1536:tDUojFpV5PEKWn+dcGoD0xzBph4BTMKLmMKad4OsPY8GJWWnR:JPtVhy1D0xzBzzNb1PYwWR

Score

N/A

Malware Config

Signatures

Files

49db483905c7978b452fd0d91b667928c001c5053d292a053faa18105984933c
.exe windows x86

abacd1002fd1f9851bfd1f3d4fb5ea8b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryDosDeviceA
GetConsoleCharType
UpdateResourceA
GetConsoleWindow
OpenJobObjectA
GetNativeSystemInfo
FreeVirtualBuffer
InterlockedCompareExchange
SetThreadPriorityBoost
GetWriteWatch
QueryPerformanceCounter

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE