499eb452e819f40c35a430629cf51c06cb3f3c27083a53bd02726b3d5a0d9410 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

499eb452e819f40c35a430629cf51c06cb3f3c27083a53bd02726b3d5a0d9410
Size

91KB
MD5

6272b84a5e3b4802ec291cbeda515648
SHA1

c0eae67a47c4390b98520cf53b5d103fa30e097d
SHA256

499eb452e819f40c35a430629cf51c06cb3f3c27083a53bd02726b3d5a0d9410
SHA512

d48fe8299b7cd308d7b0b8356b12bea4dd2d85349c1fc78f322b7a6c0344c55c647e18e815d5cb71e5d28ec099309c3fb3f13c880eaed65cb333e5b5cb6f5108
SSDEEP

1536:zu2Ph+k4/NcbZJhLWF9uDoXUHDt/49bGmh8MLxZVJe1qs:Sk4lSxI+RsGBMLxPJE

Score

N/A

Malware Config

Signatures

Files

499eb452e819f40c35a430629cf51c06cb3f3c27083a53bd02726b3d5a0d9410
.exe windows x86

34799e101669ef2eb8381c07126c7b76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemWow64DirectoryA
OpenMutexA
LZInit
CommConfigDialogA
GetDefaultCommConfigA
_lcreat
GetCommandLineW
GlobalAlloc
CloseHandle
FindNextVolumeMountPointW
GetVolumeInformationA
RtlMoveMemory

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE