bf1d45ee03f8d523119260fda8c32d81950ece36ea8a0cdd623965ebb9b1ed87 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf1d45ee03f8d523119260fda8c32d81950ece36ea8a0cdd623965ebb9b1ed87
Size

91KB
MD5

0965fd8350d5a7a9df7bb0c3b9140951
SHA1

9e3132deeb99b74245f08909ab5801ff599961ba
SHA256

bf1d45ee03f8d523119260fda8c32d81950ece36ea8a0cdd623965ebb9b1ed87
SHA512

b568af8d0bf979dddae0113137ff5f204fa61bf2a75d39a7c01cc7fdc5f0d561d4a2d6ed7d7ac675bb01fabf30943fdc061bf48b8cd279b8a75f6ac280f53802
SSDEEP

1536:FZlxFUvZ7WESsuLO55vf1CYei5XKYQbt/im+szYxHJjYzcyahBsnPcuzZw0:FZPKZfn5vtCYt9FQRtTowaYcsZw0

Score

N/A

Malware Config

Signatures

Files

bf1d45ee03f8d523119260fda8c32d81950ece36ea8a0cdd623965ebb9b1ed87
.exe windows x86

d066c2322a0533661858751b4e99e244

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadAffinityMask
lstrcmpiW
QueryPerformanceFrequency
DeleteTimerQueue
DosPathToSessionPathA
WriteConsoleW
IsBadHugeReadPtr
HeapReAlloc
GetPrivateProfileSectionNamesA
GetConsoleCommandHistoryLengthW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE