acf5078f5e4f08d0134d958131a28e058a48261ed22f944355892d8968e5edd8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

acf5078f5e4f08d0134d958131a28e058a48261ed22f944355892d8968e5edd8
Size

738KB
MD5

1cedde7b0278c9169c2fd1333f2057ac
SHA1

e2c563a1349ac13d2cf13f704b937adfaeb1dfd5
SHA256

acf5078f5e4f08d0134d958131a28e058a48261ed22f944355892d8968e5edd8
SHA512

da321c8cb4ebd363830abff21ce7f6ea24c40c35b35aa738babb82ab8ad1ef34009c6ceaa42e9efb6376a75cf971cc6cda79049c43ed67cea7255138d9e62486
SSDEEP

768:lk+lkOD950poiPtSbbYrGStk70j4CTq8tlAuHEy34arSlay34abmN:lk+lkOD950HoKRTq8tlAuHEw3rpw3bQ

Score

N/A

Malware Config

Signatures

Files

acf5078f5e4f08d0134d958131a28e058a48261ed22f944355892d8968e5edd8
.exe windows x64

051a7e15badaffdadd027c09c1bde1e3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

microsoft.photos

RHBinder__ShimExeMain

Sections

.rdata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 735KB - Virtual size: 735KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ