a6148fbebb400dbfd544ec58023f6e7aebdaefb0f3189b78f1d3b26807ba91f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a6148fbebb400dbfd544ec58023f6e7aebdaefb0f3189b78f1d3b26807ba91f3
Size

294KB
MD5

91baccb2d70414640f3f4535a083e0bf
SHA1

0c752a297f698b06e60a919f18b663df42f0657b
SHA256

a6148fbebb400dbfd544ec58023f6e7aebdaefb0f3189b78f1d3b26807ba91f3
SHA512

03ffe1683d9540ca8da4aa051cbd2cae0d2c97b44cc6c9663b150bf7436e7ccc73f0be9e72814ca05d7f58421533b3730222e9d2160df3a6600b8c418fd8aa70
SSDEEP

6144:7ofmbENYiNDqeZBEvdAUWwcAmTq3dWJXfD9EwRL0CrvfvXAmVtg:YFbZBGJ33dWdxvfvQ1

Score

N/A

Malware Config

Signatures

Files

a6148fbebb400dbfd544ec58023f6e7aebdaefb0f3189b78f1d3b26807ba91f3
.exe windows x86

2cf082f78fe51269f192ea43727c71c1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
WriteFile
CloseHandle
CreateFileA
RemoveDirectoryA
SetConsoleMode
HeapSize

advapi32

RegOpenKeyExA
ClearEventLogA
GetPrivateObjectSecurity
IsTextUnicode
LogonUserA

Sections

.bihkp
Size: 36KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dih
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fav
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bmz
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE