4e2d154d4203517da1c147f72eef78eda81da6c1d575c3c0444d1270896abcf6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e2d154d4203517da1c147f72eef78eda81da6c1d575c3c0444d1270896abcf6
Size

76KB
MD5

742a90fc014bb6aad5899942df8db7a8
SHA1

a338b83a1271942258234d5832de150e764c7028
SHA256

4e2d154d4203517da1c147f72eef78eda81da6c1d575c3c0444d1270896abcf6
SHA512

55e62cfe75bb1a7f88a6b116d136f16facd5972f4ffc650768bd68273bcd5fc9a7f422c429554223d12e6b235f2fee298464bb671683deda61f0b2700191cd1b
SSDEEP

1536:Anoooog/FDhj/Ltniy48GCvw0ZV6LDOjEErxTWDTMqhGKYIZTET8x:AnoooogXztnx4hGdLAajBkMqhGKZTbx

Score

N/A

Malware Config

Signatures

Files

4e2d154d4203517da1c147f72eef78eda81da6c1d575c3c0444d1270896abcf6
.exe windows x86

a21234ef5d1029a15d772e733006e673

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidCodePage
WritePrivateProfileStringA
GetMailslotInfo
LoadLibraryA
GlobalAddAtomA
CreateFileMappingA
ExpandEnvironmentStringsW
MapUserPhysicalPagesScatter
GetCurrentConsoleFont
GetProcessTimes

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE