21e11b69a5792f18ead879d139a30f20a8deeee8968d163a1eee2ace16970aaa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21e11b69a5792f18ead879d139a30f20a8deeee8968d163a1eee2ace16970aaa
Size

56KB
MD5

6208658424e40aacf9c084bbbf2d76f0
SHA1

6ce993aa01da690bb3f85b0232c8eeb9664d7e61
SHA256

21e11b69a5792f18ead879d139a30f20a8deeee8968d163a1eee2ace16970aaa
SHA512

2321ee3ec21f8ef08752369639d11092c5f431ef59203c4cd99fdbb6eb81572d4482d955bcb49a663c25f7921204f15fbb06758913d90a004a9274001d71d6f6
SSDEEP

1536:CoEVmCyWOmRRtdSoV7oLtMQ9JGY8HRJPdLHFvC6RKPkJLJhmL:CoCyWl3zSq7oLZ9Jx8/Fb5pIMJthY

Score

N/A

Malware Config

Signatures

Files

21e11b69a5792f18ead879d139a30f20a8deeee8968d163a1eee2ace16970aaa
.exe windows x86

df6c2ea684492fd49dce037405495b44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExpungeConsoleCommandHistoryA
SetErrorMode
LocalShrink
FindFirstVolumeMountPointW
SetConsoleTitleA
ExpungeConsoleCommandHistoryA
PostQueuedCompletionStatus
TerminateThread
QueryPerformanceCounter

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE