a50754060f423cfab8eed00a937aff25b93f7d22d45edba407a89b20431cd343 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a50754060f423cfab8eed00a937aff25b93f7d22d45edba407a89b20431cd343
Size

63KB
MD5

46d1b1613d3c53f6581120a3e6f5fbd3
SHA1

ea82cb518b87146de0e8d883809d2cc8a825ddd6
SHA256

a50754060f423cfab8eed00a937aff25b93f7d22d45edba407a89b20431cd343
SHA512

b8df07fe0053b38dc3701e413352854b8274e9597eb865f2e2348a842fbff332d5000c85c92639b7d0cf5d19fbf79a11f9559ec5a747396dd634ae2a68ec5a80
SSDEEP

1536:LLY67mESyvs8bcC6W3ZXB3wxdup5ZD+bI21NYptsTC3:LLcEJbcY3H3mup59PG6pz

Score

N/A

Malware Config

Signatures

Files

a50754060f423cfab8eed00a937aff25b93f7d22d45edba407a89b20431cd343
.exe windows x86

0ba25e151c81d69a8135348031b85fe3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueueUserAPC
GetCommMask
OpenDataFile
GetVolumePathNamesForVolumeNameA
DosPathToSessionPathW
WriteProfileSectionA
EnumLanguageGroupLocalesA
OutputDebugStringW
GetComPlusPackageInstallStatus
SetLocalPrimaryComputerNameA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE