95527f354e50249e393e56f84286a492c18620863bde3545b655cf47ccfeb26b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

95527f354e50249e393e56f84286a492c18620863bde3545b655cf47ccfeb26b
Size

76KB
MD5

81c024e5617a0634dc82ee56690c15cb
SHA1

94de92ce711111ea1cae4fb5d19be3635c409415
SHA256

95527f354e50249e393e56f84286a492c18620863bde3545b655cf47ccfeb26b
SHA512

c75a839b6ca9ba676a5d736edb248038bef3b12e4200f20e00275cc06445e81191c80e6846acd85cda97bc3b6738217636af66e73947dc746c56d380cce88db8
SSDEEP

1536:AB9vxWaf3jD46XI92b0Zo0fpjVrs2ryrd1vUQuq6:iT46XS2b0tfHs2qo

Score

N/A

Malware Config

Signatures

Files

95527f354e50249e393e56f84286a492c18620863bde3545b655cf47ccfeb26b
.exe windows x86

7afc128e3bd0e84d47ceec77b8f09672

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReplaceFileA
GetConsoleInputExeNameW
DisableThreadLibraryCalls
GetProcessIdOfThread
CreateJobSet
ZombifyActCtx
GetCurrentThread
GetConsoleSelectionInfo
GlobalDeleteAtom
GetCurrentProcessId

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE