e6bcde58f9c6413acea01727202e40179ee04857d0381049722c0e78cb2b6997 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e6bcde58f9c6413acea01727202e40179ee04857d0381049722c0e78cb2b6997
Size

94KB
MD5

11bec37584fd0e396d0eedf832f704a4
SHA1

94de12076ae154904b69f8e2a3b055aea9650d89
SHA256

e6bcde58f9c6413acea01727202e40179ee04857d0381049722c0e78cb2b6997
SHA512

d05166fddc7b01910366ddc41604155aea22621d17f7163deac85b0c996ea91fd9bb2173345c3d9cea4623948d6e1602c535919bd2b25cecd57f0a4cf866b3ed
SSDEEP

1536:m5U9vK9H+gqpEw1XrLwiUzgUjzTw7Jm/5bFTWW6k6/c8YaEJwZK4/83ZoMOALF6/:gUUHfKXwiUEU3Tw0/5bcg6/hZEXtpxLa

Score

N/A

Malware Config

Signatures

Files

e6bcde58f9c6413acea01727202e40179ee04857d0381049722c0e78cb2b6997
.exe windows x86

20720d930137f47daa8875e538e23ec5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceNamesA
SetSystemPowerState
WritePrivateProfileStringA
LZOpenFileA
WinExec
ConvertDefaultLocale
GetDateFormatW
ExpungeConsoleCommandHistoryW
CreateProcessA
WaitForDebugEvent
LCMapStringA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE