1a0ee99bcebe4e08836a79bc19a82b7b427750feff6b61b72eef7183081f0dbc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a0ee99bcebe4e08836a79bc19a82b7b427750feff6b61b72eef7183081f0dbc
Size

66KB
MD5

b3c8ebd0439ae873f95856640385e38d
SHA1

b5490372f0651ba07e77294cd1559ab672e78ca7
SHA256

1a0ee99bcebe4e08836a79bc19a82b7b427750feff6b61b72eef7183081f0dbc
SHA512

79ea20b3d87c8a48d9c17d1738d6fe9931e7d1005b76163259ae3be7814a2bb96e56804d7b59aef32538f74490f0fc414b381fa38c7a63d410b69c35f0f41be4
SSDEEP

1536:AGhyFfxuQvVAbiUuqlw1NOBDORsRRoOVri1vjDhpuJQqALINh+VsQNXY8:fiwaRhF1ILAL6c/X1

Score

N/A

Malware Config

Signatures

Files

1a0ee99bcebe4e08836a79bc19a82b7b427750feff6b61b72eef7183081f0dbc
.exe windows x86

a8666faa8ac14ca54d63249bb114bd94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugBreakProcess
Process32NextW
ReadConsoleA
EnumCalendarInfoA
CreateJobObjectW
IsValidLanguageGroup
SetCommState
WaitCommEvent
UnregisterWaitEx
GetVersionExW
FindNextVolumeMountPointA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE