532dcb301d6dacd8224e8d4820862a8122953802d954ec8c2623b54aeb58ec46 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

532dcb301d6dacd8224e8d4820862a8122953802d954ec8c2623b54aeb58ec46
Size

94KB
MD5

c1ab32cbb9c7a3ac34eb38e5588876dd
SHA1

4f184132907c6adcae328770ecd344051eef658c
SHA256

532dcb301d6dacd8224e8d4820862a8122953802d954ec8c2623b54aeb58ec46
SHA512

1c0210c55f08362c851869d6eb9d23759d101d4ab36c7d3f98fad55dc4ffda800bac3d1de9f820fa915b9a6e684103d6f9c9ebe88f2b2eb891ae3d38cd153364
SSDEEP

1536:jOvMuWFv2xKUCXAV949DsRaGkNpjuJVc4EFxVNrAa0Z+:SvhKOKky9QRYpjSfGyZ

Score

N/A

Malware Config

Signatures

Files

532dcb301d6dacd8224e8d4820862a8122953802d954ec8c2623b54aeb58ec46
.exe windows x86

64add4ae8c590fdf42574a68e06650cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTapeStatus
WriteConsoleOutputCharacterA
ExpungeConsoleCommandHistoryA
VirtualBufferExceptionHandler
GetComPlusPackageInstallStatus
FindAtomA
ExitProcess
SetVolumeMountPointA
DebugSetProcessKillOnExit

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ani
Size: 37KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE