0d598f0af9fe3fba4072a4beb538f0e38a2bb685463953095fa60fcee601992b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d598f0af9fe3fba4072a4beb538f0e38a2bb685463953095fa60fcee601992b
Size

94KB
MD5

c7fba66e6cc4eba9ec754f2a2b18d893
SHA1

0b5643e5307faa826187b2b896b4925ebdfbec7c
SHA256

0d598f0af9fe3fba4072a4beb538f0e38a2bb685463953095fa60fcee601992b
SHA512

afb70ab33d68494283093c87d00662f6dee67d0dcdbc4b2d3378b7662127603b1949e1099aaa3e70e71405acfbf64c3b359e92dd618dae4b8f500e69100e056d
SSDEEP

1536:UwVDjsmVNWm/Qd7nSoVDzGyHe0c8YaEJwZK4/83ZoMOALF6SSf:UpmVNWm/USoVPGyjhZEXtpxLF6H

Score

N/A

Malware Config

Signatures

Files

0d598f0af9fe3fba4072a4beb538f0e38a2bb685463953095fa60fcee601992b
.exe windows x86

54fb0b97e1690e1eb1c8263b83be0476

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableW
FoldStringA
LZInit
AllocConsole
UnregisterWait
TerminateJobObject
SetConsoleLocalEUDC
SetConsoleCursorInfo
GetModuleHandleExW
GetSystemDefaultLangID
FindFirstVolumeMountPointA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE