e2183b803af4cce69e2fa3f24bee17b1a5d266cee9a770e90b13b53550b166ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e2183b803af4cce69e2fa3f24bee17b1a5d266cee9a770e90b13b53550b166ab
Size

76KB
MD5

f58bd437f9ac8fc8a9475b6404c92d65
SHA1

63006fc6f32cf209a1d6deaee39746cfaeb362e2
SHA256

e2183b803af4cce69e2fa3f24bee17b1a5d266cee9a770e90b13b53550b166ab
SHA512

440199e0880fd484fca64de2ef9ed66a91444598a30e10d35e6a543bd7a037fafec3c5dae0b705a3a32dfb23ed2a7498ea54718bb75362ec6b61eb93788c856f
SSDEEP

1536:p2yeVscELZKZViiW4cy3qtSELkt2/1gmsqxidOe6frooQBRyLk2Azro4PGq++qZ5:EiivTCShTK0uGEB4j0fHs2qo

Score

N/A

Malware Config

Signatures

Files

e2183b803af4cce69e2fa3f24bee17b1a5d266cee9a770e90b13b53550b166ab
.exe windows x86

1c079460ce3e80e1d5a6b39594a1f283

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCommandHistoryLengthA
ExitThread
VDMConsoleOperation
FreeUserPhysicalPages
Toolhelp32ReadProcessMemory
HeapCreateTagsW
GetModuleFileNameA
BindIoCompletionCallback
GetModuleFileNameW
GetConsoleAliasW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE