a85a77b850796ba63903bbd17dd31f6925093091f13bdfd4a28040a75bd2dd62 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a85a77b850796ba63903bbd17dd31f6925093091f13bdfd4a28040a75bd2dd62
Size

66KB
MD5

5943b17ef149160471fab15e220c0782
SHA1

cd607f5127dd3dc5d3865936bbcf0e66ffe8b2a4
SHA256

a85a77b850796ba63903bbd17dd31f6925093091f13bdfd4a28040a75bd2dd62
SHA512

ea4a4a5a514ee1bf6eec8fbf4a9210cb6d1adaad1fe1e5eba3fb30966f1062e56068321782399701ae868e87f773cd1799937ee9142439a04ce1282c692b5056
SSDEEP

1536:X/4kRkILKnMfB2LXLn+6Sh33bfOuiLS7v4:X/4Ok6QMfFiunA

Score

N/A

Malware Config

Signatures

Files

a85a77b850796ba63903bbd17dd31f6925093091f13bdfd4a28040a75bd2dd62
.exe windows x86

202002817de4b6465ac640ef3252a6f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDefaultCommConfigW
LockResource
GetSystemDirectoryA
CreateDirectoryExW
RemoveLocalAlternateComputerNameA
WriteFileGather
FindActCtxSectionStringA
GlobalFree
IsValidLocale
GetConsoleAliasesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE