45a14d46cc911d7e236677769828516b10b538df9ee1f26a03d9ee57cef818d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45a14d46cc911d7e236677769828516b10b538df9ee1f26a03d9ee57cef818d4
Size

128KB
MD5

ea91304a167b0d9f0d6824df4452e603
SHA1

15455140733961b57fb85e53201821c647a76538
SHA256

45a14d46cc911d7e236677769828516b10b538df9ee1f26a03d9ee57cef818d4
SHA512

515ab95f2d5f1d307b4b9fd9fc5d902d3da7906e8ff11ffb6c44a21c57aea3b46c6c48eeaaa43c49f5b21cf94dd94ab2b2dadf397c221ac210c0876604f6c901
SSDEEP

3072:tg9NqsZZqvhwom+f3dbai4TqHtGFQjJ2ACjkN:+RQbm+1brUQjw1I

Score

N/A

Malware Config

Signatures

Files

45a14d46cc911d7e236677769828516b10b538df9ee1f26a03d9ee57cef818d4
.exe windows x86

e00676c3d0e1e82c06243ec012cc3c47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugActiveProcess
GetVersionExA
SetVDMCurrentDirectories
SetEnvironmentVariableA
GetEnvironmentStrings
SetFileValidData
AssignProcessToJobObject
MoveFileExW
GetProcessShutdownParameters
OpenMutexA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 104KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE