d8cd8d3c80d7c15c61ec0da5e50566b696192e871e6ceeb40f479ff0ec99573d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d8cd8d3c80d7c15c61ec0da5e50566b696192e871e6ceeb40f479ff0ec99573d
Size

19KB
MD5

7b67c992bb12fba2b1bdaec66d740de0
SHA1

63b349865dd9d1299dd9c36be907153650869501
SHA256

d8cd8d3c80d7c15c61ec0da5e50566b696192e871e6ceeb40f479ff0ec99573d
SHA512

4f9093a511964696aa2fc85e7a35fc2b1ed7129b7c6d3027b3e98564c2e3f760d70244bfbcc70f45b2bdbbdc46cc8020e89af702f4ecce38e4b20899b6aee17a
SSDEEP

384:zRyTS4NGPqCprtlgFGbwbjGGsLWbVX27l+jteR+6d74t6UMCAtScAQRNqAR0dxfF:zRaHMiCprjgAEbj9sLWhXwl+jER+6dcN

Score

N/A

Malware Config

Signatures

Files

d8cd8d3c80d7c15c61ec0da5e50566b696192e871e6ceeb40f479ff0ec99573d
.exe windows x86

d341e3aff597094a7f4bc66187e9fb23

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFirmwareEnvironmentVariableW
SetThreadPriorityBoost
CreateNamedPipeW
CopyFileExA
CompareFileTime
QueryDosDeviceA
IsSystemResumeAutomatic
SwitchToFiber
OpenWaitableTimerA
ReadFileEx
EraseTape

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE