28c6540af84208ec98c351666567ba7d190651127b411bf91a85ea8fe2f2e488 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28c6540af84208ec98c351666567ba7d190651127b411bf91a85ea8fe2f2e488
Size

71KB
MD5

9f23c399c042811719eed8d35353f9d4
SHA1

9b82d6b5e4fd6f3d267af30c628733620433f35e
SHA256

28c6540af84208ec98c351666567ba7d190651127b411bf91a85ea8fe2f2e488
SHA512

8f8f5cdd37b26254f2b19521572766ebde8495cf2052e4547ea8842c19511b1d09f1736dccddba02870b2f1e26bf3a4f198f3e69a23c869e33fea2848fc703df
SSDEEP

1536:VWp7a8L1rzePDAglkX/NdZlkkPXsYHd0xMrCfUN:WraRI/FlfPcrxA60

Score

N/A

Malware Config

Signatures

Files

28c6540af84208ec98c351666567ba7d190651127b411bf91a85ea8fe2f2e488
.exe windows x86

3248a2c6a35af67388649149b06f41aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumberOfConsoleFonts
LocalHandle
VirtualQueryEx
AddConsoleAliasW
SetProcessShutdownParameters
GetConsoleSelectionInfo
DeleteTimerQueueEx
GetVDMCurrentDirectories
SetProcessAffinityMask
GlobalLock

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 57KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE