03111dcfeeab99a8ff4f73b0bac3505c3ffc018b95787d17a806d5512a015213 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03111dcfeeab99a8ff4f73b0bac3505c3ffc018b95787d17a806d5512a015213
Size

91KB
MD5

49330d27b53e509af9f3673173a6eb21
SHA1

a81e9c304a98662ea6334e78951d7b926f062b9a
SHA256

03111dcfeeab99a8ff4f73b0bac3505c3ffc018b95787d17a806d5512a015213
SHA512

e5e4cf1456bfdb7b2420c35b4e6be3e208ff89a3019529ef25bbc37523ea83adc186fdd770d2b10b423d16bd19fa0022132f7dff14504685d6464ac15fbc62d7
SSDEEP

1536:unPPP5x76TmrVf9n/Li/RTZ2FYGZOsLN6HCzV1MTLLtioW1pBqqS3ENSnPZXp:EleGd8hZWOsNqLLs3Bq7UwP7

Score

N/A

Malware Config

Signatures

Files

03111dcfeeab99a8ff4f73b0bac3505c3ffc018b95787d17a806d5512a015213
.exe windows x86

4fe43aa193159633c94e06e19909d356

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBW
EnumSystemCodePagesW
EnumResourceTypesA
DisconnectNamedPipe
ReplaceFile
LocalLock
EnumSystemGeoID
QueueUserAPC
OpenDataFile
DeactivateActCtx
LocalReAlloc
EnumResourceTypesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE