e5a6bba5f796692779dd995310134624d77f285db89d7c79d22a5d91b4513801 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e5a6bba5f796692779dd995310134624d77f285db89d7c79d22a5d91b4513801
Size

1010KB
MD5

cacdb49c30f83a30aa7a1a960105f748
SHA1

0f74931a1a4ace01b8e9f13e861a4b6f95a52d4f
SHA256

e5a6bba5f796692779dd995310134624d77f285db89d7c79d22a5d91b4513801
SHA512

75c69d76d2ead1ed4a1e583621d8795b56b2e56d6508ed51ac3781cae14b27be0a720fa04d0566c954964ce6785ee9bd8cc0c77f35ed36b23308fcee7adafeea
SSDEEP

24576:5jn2CVJSIYH7loOR7TwToLrPaLbvNz+eV3r6ZL:5aIkP7TwT4W1zxx+L

Score

N/A

Malware Config

Signatures

Files

e5a6bba5f796692779dd995310134624d77f285db89d7c79d22a5d91b4513801
.exe windows x86

cbd262f942fb903cd67953ada2864ddf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
VirtualAlloc
LoadLibraryA
GetVersionExA
CreateFileA
IsBadWritePtr
GetTickCount
WriteFile
DeleteFileA
LockResource
GetStringTypeA
FindClose
DeleteCriticalSection
GetFullPathNameA

Sections

.text
Size: 358KB - Virtual size: 357KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 639KB - Virtual size: 638KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ