e1a69f9f0ca5195fddf86e98828e03a980e02abb0c9b350ad08cae569750804b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1a69f9f0ca5195fddf86e98828e03a980e02abb0c9b350ad08cae569750804b
Size

94KB
MD5

a14f0a92ed13687f0c8ac8f5234082ad
SHA1

41ebf250390b482f88f9b799aef61f8c2c6dd013
SHA256

e1a69f9f0ca5195fddf86e98828e03a980e02abb0c9b350ad08cae569750804b
SHA512

649dfedefca4d7026a1129bbd6a1beb63503b8c4be815821dcbb2ad4fde0dfa3ad9faf48a692bb3b5906de266c6e448130d50a2ebb9c4ed39b41699f76d801bf
SSDEEP

1536:2wBwESia3bboD06ZSnP8acBJ2bFfvvc8YaEJwZK4/83ZoMOALF6SSf:FBwESiC7cA8acP21hZEXtpxLF6H

Score

N/A

Malware Config

Signatures

Files

e1a69f9f0ca5195fddf86e98828e03a980e02abb0c9b350ad08cae569750804b
.exe windows x86

1772778d44173164dce64a0e2ac02684

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LZInit
GetConsoleCommandHistoryLengthW
GlobalReAlloc
RegisterWowExec
GlobalMemoryStatusEx
SetThreadPriority
GetProfileStringW
DecodeSystemPointer
GetModuleHandleExW
QueryActCtxW
WriteConsoleOutputW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE