866115a15c76ebbec4d3f505b16b223b1394185f58e2da779605f8ebd3230a70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

866115a15c76ebbec4d3f505b16b223b1394185f58e2da779605f8ebd3230a70
Size

76KB
MD5

a497987ce8dc9813f84f7a2d59f8927a
SHA1

65cba406d2407ee24e0487b891dc13d08a45919d
SHA256

866115a15c76ebbec4d3f505b16b223b1394185f58e2da779605f8ebd3230a70
SHA512

308532bbb80f38b390ee272738246c5218fac5b7c324e0ca523926b8d2efcc9a035c4b82762f53ca2f633dc402dd1844860ccd06d60ddb89660743bd7d698d65
SSDEEP

1536:+4Q6bbzV9Rn5vrGT2b1RxGbjVR4fBSpjVrs2ryrd1vUQuq6:+4QkZqTU1KbZR4ZSHs2qo

Score

N/A

Malware Config

Signatures

Files

866115a15c76ebbec4d3f505b16b223b1394185f58e2da779605f8ebd3230a70
.exe windows x86

c75dd749bdd77ef03b401798452a1277

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugSetProcessKillOnExit
GetConsoleCP
GetConsoleCommandHistoryW
lstrcmpiW
InterlockedPushEntrySList
WTSGetActiveConsoleSessionId
LocalFlags
FindResourceExW
GetProfileIntW
GetCommMask
WriteConsoleInputVDMW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE