d1bc1637e68a2a19a4273dc0b335f24dc7f58f69d8de0784a6399bf07de4e25b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1bc1637e68a2a19a4273dc0b335f24dc7f58f69d8de0784a6399bf07de4e25b
Size

19KB
MD5

615089a67eb28217da80bc516093fa92
SHA1

3ecccb167c18b9cf7e92970071bc1056202d20f9
SHA256

d1bc1637e68a2a19a4273dc0b335f24dc7f58f69d8de0784a6399bf07de4e25b
SHA512

e1fd26e1a52ed143d82d0673d093c248640446fbda93d4b75ccfbca4c81e50f5324ebe0045693cd1d9b1bb550bc198066004acce603137f0e696b8e761ddb709
SSDEEP

384:2RZPBa86cX3/fjm01Om0j+00CggSBvtll0u8Qs4RPglqoA0017EpsXn0BL59toyF:6NFX3/fjdt0j+00Cggs1ll0u8d4RoqoJ

Score

N/A

Malware Config

Signatures

Files

d1bc1637e68a2a19a4273dc0b335f24dc7f58f69d8de0784a6399bf07de4e25b
.exe windows x86

c02eebea1f97c9a13fbb6e4f52ca9b55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindActCtxSectionGuid
GetProcessIoCounters
GetTimeFormatA
QueryDepthSList
GetGeoInfoW
SetClientTimeZoneInformation
CallNamedPipeW
CreateFileMappingA
GetConsoleInputWaitHandle
PrivMoveFileIdentityW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE