f0bedd5a8753025a348610755e9ff4309a41672cea9c43241b5c6d6cb854d43c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0bedd5a8753025a348610755e9ff4309a41672cea9c43241b5c6d6cb854d43c
Size

56KB
MD5

ec00f35a05f05c407bc0b593547cc0d8
SHA1

3e5648c94115acba362883d4ac945f2505a87234
SHA256

f0bedd5a8753025a348610755e9ff4309a41672cea9c43241b5c6d6cb854d43c
SHA512

12a885a3eebea8e71cd12ffbc9513e3d7634f545007dc379702557d6eee58ab3f9ca004b5badc0b3a96917278aca2b352c2902b9d1b5171d40af34e9860467a0
SSDEEP

1536:i1JD3sS4t0o2/zfHQnze9ZHOF42GQzvTlrjAf:i3yt0o0zfHQnq9ZuF4BKhjAf

Score

N/A

Malware Config

Signatures

Files

f0bedd5a8753025a348610755e9ff4309a41672cea9c43241b5c6d6cb854d43c
.exe windows x86

850ba6871695ed8c9217cdbbe4681047

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WTSGetActiveConsoleSessionId
HeapSetInformation
IsSystemResumeAutomatic
GetCommConfig
LockFileEx
FindNextVolumeW
SetConsoleTextAttribute
FreeEnvironmentStringsA
GlobalMemoryStatusEx
GetConsoleHardwareState

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE