0f20ffdad4e950787e840f27de31b27a89cd9c64361f5edf4e2a8dc9e8157f49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f20ffdad4e950787e840f27de31b27a89cd9c64361f5edf4e2a8dc9e8157f49
Size

91KB
MD5

47e87f29d172aceacc7a94b8556e1427
SHA1

e29a9ca5810d557c942f9bb5c8fe6203c5eb239b
SHA256

0f20ffdad4e950787e840f27de31b27a89cd9c64361f5edf4e2a8dc9e8157f49
SHA512

f71a47943074aa5681cbd6d4f7a8aa8c8bce36f2a3d87eef549fb755ee0ad1388f65d4ed82e4b10cfebf74a5803c4fe1a22af10f0d8e4ab4617a573840e17f39
SSDEEP

1536:T7KnSxIIJuQQRgM7UKizMdXCYwZPn3t2WzBnJ5D5ucU:T7K3ILQO8UOCXPn3tNdnJF4cU

Score

N/A

Malware Config

Signatures

Files

0f20ffdad4e950787e840f27de31b27a89cd9c64361f5edf4e2a8dc9e8157f49
.exe windows x86

20be6ac902d3fad836b25e805efa377b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleCursorInfo
FindActCtxSectionStringA
OutputDebugStringA
ReadDirectoryChangesW
DosPathToSessionPathW
GetComPlusPackageInstallStatus
SearchPathW
SetProcessDEPPolicy
DeleteTimerQueueTimer
SetLastConsoleEventActive

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE