bad4d1513c47164c5c980bf0f34c9d145f05f79af0cd57dbd6e53368f61eb025 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bad4d1513c47164c5c980bf0f34c9d145f05f79af0cd57dbd6e53368f61eb025
Size

66KB
MD5

c2b9e0fa4a073f78631ce648d8698673
SHA1

26f879ab46a6b27f11ff157d01fab8f11fad2670
SHA256

bad4d1513c47164c5c980bf0f34c9d145f05f79af0cd57dbd6e53368f61eb025
SHA512

d93d6491545bde8179ae7b45e6df6db4159d24d12aa64d3d8e3e142d0ac8b79f5791289ebe3d82a2f2f3706601aee445d43ab6250dd2662cff37719d3b5c9d4e
SSDEEP

1536:AH+v5tMkf7zXQ3gqyoj6vYQh1d0AXjeuiLS7v4:RMuXQQqQVhKunA

Score

N/A

Malware Config

Signatures

Files

bad4d1513c47164c5c980bf0f34c9d145f05f79af0cd57dbd6e53368f61eb025
.exe windows x86

22c675ae5ccb8ed31b347784a9825c9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LZStart
WriteConsoleOutputCharacterW
GetVolumePathNameA
GetProfileStringW
SetConsoleCP
QueueUserWorkItem
lstrcpynA
GetCurrencyFormatW
GetEnvironmentStringsA
SetConsoleMode
SearchPathW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE