34958d04f695b9931c0aa232c9e763d7fa278694375189ba040dd82d8e104607 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34958d04f695b9931c0aa232c9e763d7fa278694375189ba040dd82d8e104607
Size

94KB
MD5

31e208707b972a2fe103f0b043388c09
SHA1

053b00ac61903cbf2f8d7793e0f6ca36e7dfc508
SHA256

34958d04f695b9931c0aa232c9e763d7fa278694375189ba040dd82d8e104607
SHA512

130b11e643a90d63e6128fc5957d08bea2724573e0552abbda0176893c9ca749c9aa9b4d3c64edef2c3e2627494a6524564f91644b06306147de038433a0b4ad
SSDEEP

1536:c4v1TN2cTIIKaPXmByP8MqEpMa/vDdQQo/cm12LQnc8YaEJwZK4/83ZoMOALF6Ss:c4v5RTleBykMqEXG0m12LqhZEXtpxLFU

Score

N/A

Malware Config

Signatures

Files

34958d04f695b9931c0aa232c9e763d7fa278694375189ba040dd82d8e104607
.exe windows x86

acd16c40ef2c41b52b5eb43fb33d0619

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OutputDebugStringW
GetModuleHandleW
EnumSystemLanguageGroupsA
WTSGetActiveConsoleSessionId
SetSystemTimeAdjustment
SetEvent
QueryWin31IniFilesMappedToRegistry
GetNumaNodeProcessorMask
TlsAlloc
CopyFileA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE