c1dd7a49471bd63bba27f20616c6505e594e73bd27d7f94203620c77c85b3aec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1dd7a49471bd63bba27f20616c6505e594e73bd27d7f94203620c77c85b3aec
Size

63KB
MD5

a405554e8e414ec1c2e1fba8613da162
SHA1

78fd34b6cb114ee9102dd853b51a0075cc7a0712
SHA256

c1dd7a49471bd63bba27f20616c6505e594e73bd27d7f94203620c77c85b3aec
SHA512

11c954e8fbdafb2066f07d84517a9bca23728f9d9e6463f7a0c517866ee468a3dd56f5ac066bb93abf5dac346534fa1bd1dbab41cf204bfc15ee13a8bac0ccc8
SSDEEP

1536:L8Ilbj1QUoIqBMgIzXrqEBUdGdeFaEp1+I/A:AIj1s1GX2EKd2SaEp1+I/A

Score

N/A

Malware Config

Signatures

Files

c1dd7a49471bd63bba27f20616c6505e594e73bd27d7f94203620c77c85b3aec
.exe windows x86

dabda52f007c2ebba5cabd5aecc0d780

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32FirstW
EnumResourceTypesW
FindActCtxSectionGuid
OpenJobObjectW
WritePrivateProfileStringW
HeapDestroy
GetCurrentActCtx
GetCurrentProcess
GetUserDefaultLangID
OutputDebugStringA
LockFile

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE