2143cfea8f0bbb43732ed4cccc0fc66a1286e8275c396850824a1b8de4ad1efb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2143cfea8f0bbb43732ed4cccc0fc66a1286e8275c396850824a1b8de4ad1efb
Size

63KB
MD5

ee6e7cba871d7efe875905c0c8c5cdd9
SHA1

855e4c9459f45f128e72dea053d193d65e51d491
SHA256

2143cfea8f0bbb43732ed4cccc0fc66a1286e8275c396850824a1b8de4ad1efb
SHA512

080ca287b64067585f208f2eb747b5b2f7e519f6085f64fb3a68a368542cc91db3174b90c032c56b8998613fbe27201f3aba294d67cf6dbd77cadd262cf91b43
SSDEEP

1536:j6Nfubyp/Cq7PSMGRcMl9nJc2xmiVZxgZp9plHb5g3QM:UfywGRcMltOiV3gZv7HbmF

Score

N/A

Malware Config

Signatures

Files

2143cfea8f0bbb43732ed4cccc0fc66a1286e8275c396850824a1b8de4ad1efb
.exe windows x86

3e86ddf1613600c184a7f0bbf993b92d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32First
IsProcessorFeaturePresent
DisconnectNamedPipe
DeleteFiber
GetConsoleDisplayMode
DelayLoadFailureHook
ReadConsoleOutputA
CreateProcessInternalW
MoveFileA
GetComputerNameExW
GetEnvironmentStringsA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE