e1b638c7264d6f453b623d32cd1fe13c62a051c08b2ce086d6e8f3053f951c93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1b638c7264d6f453b623d32cd1fe13c62a051c08b2ce086d6e8f3053f951c93
Size

94KB
MD5

8fb5768cb357359eabca06e6579efa3a
SHA1

0f8ba0015504fc59a75252edf545a729934a9c1d
SHA256

e1b638c7264d6f453b623d32cd1fe13c62a051c08b2ce086d6e8f3053f951c93
SHA512

9564d28c785a67220a54264624177c292b271e3296cf87f87ed5abe088b2285fa5e1202cd0876e9e98a31df8f7904656f0a6a5141cf018ad054d8f59ed8cfa82
SSDEEP

1536:C/p2+P7E6gEY5aq1NcH04Ht80OI/lDDnLv8HgF1TwqVHTAsNkc8YaEJwZK4/83ZQ:C/LAEY5dh88PI/lDnLUA/w+vehZEXtpo

Score

N/A

Malware Config

Signatures

Files

e1b638c7264d6f453b623d32cd1fe13c62a051c08b2ce086d6e8f3053f951c93
.exe windows x86

46fbc75d60124527e79c6e68df0321e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadIOPendingFlag
OpenFileMappingW
WriteConsoleInputW
BaseCleanupAppcompatCacheSupport
GetBinaryType
PeekConsoleInputW
SetThreadIdealProcessor
DeleteVolumeMountPointW
SleepEx
ReadConsoleOutputAttribute

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE