96a3d302f3cb3a78f138ebe0a8a6ccfbaff5bbd0874a6a7f5fe0a63e0f3a496d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96a3d302f3cb3a78f138ebe0a8a6ccfbaff5bbd0874a6a7f5fe0a63e0f3a496d
Size

56KB
MD5

5f054c58e0f617050753c424db6f2088
SHA1

8290a8dbd0f93e328b7bb4f45814a647ff1f1fb4
SHA256

96a3d302f3cb3a78f138ebe0a8a6ccfbaff5bbd0874a6a7f5fe0a63e0f3a496d
SHA512

3f90586351429c4c590f5226dd846db0575c17ffca619a636fe6558feda299af3883c7bec91dcd872abd293c2f4523b7c371b5eff5ed2e239165804a4bb43d65
SSDEEP

1536:o2ScZGV9vKzW6drEP+y0mbNLLSvTkrGX4fr:FSuAVorEWy0mpLLSki8r

Score

N/A

Malware Config

Signatures

Files

96a3d302f3cb3a78f138ebe0a8a6ccfbaff5bbd0874a6a7f5fe0a63e0f3a496d
.exe windows x86

662159ef6fa2e151f7774110bbdb7b8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lwrite
MapViewOfFileEx
GetProcessId
GetLocaleInfoA
FindVolumeClose
VirtualAlloc
WTSGetActiveConsoleSessionId
SetupComm
EnumLanguageGroupLocalesA
SetProcessShutdownParameters
CreateJobObjectW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE