7a86ca05f45d26afe708ca3962a8edc1279f277fc6affb10ebd8a86a6253981d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a86ca05f45d26afe708ca3962a8edc1279f277fc6affb10ebd8a86a6253981d
Size

76KB
MD5

9d13191ae50a731f8e5ce7147f1cd333
SHA1

64d503ae48942b4465a92ec7832d78cd1f8a2893
SHA256

7a86ca05f45d26afe708ca3962a8edc1279f277fc6affb10ebd8a86a6253981d
SHA512

b9ba16ffadc33a1c8c082e8155876b494153bd08d08d27cb1a100b8bed2148261969c47e2bc534d762032ee5ab96112f29d7943949ee58823146fd13c4c3dd3b
SSDEEP

1536:xgDDdC36Jq7jLznnM06XN5gcwjt8D82hW8fPL9:xgDDdUf31wr+uD8vYL9

Score

N/A

Malware Config

Signatures

Files

7a86ca05f45d26afe708ca3962a8edc1279f277fc6affb10ebd8a86a6253981d
.exe windows x86

2fbc8f57ee19360f3da1c1f5c74ef76f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TransactNamedPipe
LoadLibraryExA
FindActCtxSectionStringA
EndUpdateResourceW
Process32NextW
SetThreadExecutionState
TlsGetValue
GlobalMemoryStatus
OutputDebugStringW
CallNamedPipeW
IsSystemResumeAutomatic

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE