167e2c1411243a4c39829d09db470478546e0a6b06072dddc2c109d09cf04809 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

167e2c1411243a4c39829d09db470478546e0a6b06072dddc2c109d09cf04809
Size

66KB
MD5

718cceb1a4873f1d3add20cf42afc37a
SHA1

7c460120a5586943a5a22392e4ed87634f2e84ac
SHA256

167e2c1411243a4c39829d09db470478546e0a6b06072dddc2c109d09cf04809
SHA512

05af0ad51fc23293d9ecda8f4041148c6ed37a11deb27490ff8929f0efea2ad563426325a51c10e93b41dd79c418a7023482be6b90d99cb8823b49b3db1e16c5
SSDEEP

1536:xyT983OzqVIqmEFg042xTSVQvu1kNqBp8CqoFKB+sIqz8LriFi:mgOzCp+042xTbuk28CqQ2+sIqz8LW

Score

N/A

Malware Config

Signatures

Files

167e2c1411243a4c39829d09db470478546e0a6b06072dddc2c109d09cf04809
.exe windows x86

8d5913e33196bd880f37b42407c2234e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugBreak
ReleaseSemaphore
GetProcAddress
GetCompressedFileSizeA
GetModuleFileNameW
lstrcpyA
EnumResourceLanguagesA
CreateTimerQueueTimer
BaseInitAppcompatCache
GetWindowsDirectoryA
GetNumaNodeProcessorMask

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE