a19480cd3ec3cbafcb18772216ae644351b1bdef3ce1151056562ef7e1381859 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a19480cd3ec3cbafcb18772216ae644351b1bdef3ce1151056562ef7e1381859
Size

83KB
MD5

725f211a3c2f6a3e50a571e798ebfa66
SHA1

5b544fd5d9ec25f0fe2a9ff44a9495f885323049
SHA256

a19480cd3ec3cbafcb18772216ae644351b1bdef3ce1151056562ef7e1381859
SHA512

c8ca423597016851cc2058a6d1e601c67306491f2075593bb914f722956ea14f563cfa9232e7d352b086c5ef86f91319af03c3405ef2027d104ad59d22c6fb6b
SSDEEP

1536:Vw7HY7NIydOdWnDCg3MWU5ytbBXCx67tcG5YIt0MGZpjVrs2ryrd1vUQuqHiw:aHY7NIydfnZ3XUCc67tHYIMZHs2qJi

Score

N/A

Malware Config

Signatures

Files

a19480cd3ec3cbafcb18772216ae644351b1bdef3ce1151056562ef7e1381859
.exe windows x86

8a3b0d589e9258d9a78c65d6ef0d9380

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FillConsoleOutputCharacterA
GetCurrentProcessId
CopyFileExA
FindNextVolumeMountPointA
CancelWaitableTimer
GetVolumeNameForVolumeMountPointA
WritePrivateProfileStringA
SetTapeParameters
RegisterConsoleIME

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE