c06149b955db84c3029bc9dc68d40a24ec1d35bb6db57070ccf40240f50cebdc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c06149b955db84c3029bc9dc68d40a24ec1d35bb6db57070ccf40240f50cebdc
Size

1.1MB
MD5

879af6e6bb0c4e15a7d6c9bd80e8f536
SHA1

ac52c54bc2415d3970837dfdcc42c2c0d3d33b85
SHA256

c06149b955db84c3029bc9dc68d40a24ec1d35bb6db57070ccf40240f50cebdc
SHA512

fcfc2697652fca0ed29326f4186c40a2c14995e6b75579c64dd747c7a5b7b2dde4c78f403b3841033b7976ae3ac1f4c9bc575431c2bbe01ba475a7df23b847c9
SSDEEP

12288:ijWk/lkby3bSe/Gle+XOCzRQz187ZkxwHAiVtyRlBbnJneSYC:UkGbuh2z18dkxwH5tOBbnJeC

Score

N/A

Malware Config

Signatures

Files

c06149b955db84c3029bc9dc68d40a24ec1d35bb6db57070ccf40240f50cebdc
.exe windows x86

d6d3ab428866e15271334ea7101de372

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
GetModuleHandleA
GetCommandLineW
GetCurrentProcess
GetVersion
GetLastError
GetSystemDefaultLCID
GetUserDefaultLCID
GetCurrentProcessId
GetCommandLineA
GetCurrentThreadId
GetTickCount
VirtualAlloc
GetModuleHandleW
GetProcessHeap
InterlockedCompareExchange
LeaveCriticalSection
FormatMessageA
LCMapStringA
SetEvent
GetStartupInfoA

Sections

.text
Size: 334KB - Virtual size: 334KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 642B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 752KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ