34a5c69dd5fc490b62ca4ca69dbb083d04947149d4116eab6815d67be648d427 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34a5c69dd5fc490b62ca4ca69dbb083d04947149d4116eab6815d67be648d427
Size

56KB
MD5

5bd71b85d4e40868b00880d91ce7fd10
SHA1

d87503de965164455b1152af4249bed9d51ced81
SHA256

34a5c69dd5fc490b62ca4ca69dbb083d04947149d4116eab6815d67be648d427
SHA512

5fe053407dd4e36c89716deb681127ec7e2cb2261fb590a9c11d1784fc8bb55b91ff9cb6737e2fb63551d027f86b8d4597c33f5bfc52a20980544b7e8e49551e
SSDEEP

1536:X1L+NYglnHEkxRTL3orYNPJMokVfbDU0iO5W80Kj5I3tSVI:XyzlnHhxRTL4QPioSbo0rW80sI

Score

N/A

Malware Config

Signatures

Files

34a5c69dd5fc490b62ca4ca69dbb083d04947149d4116eab6815d67be648d427
.exe windows x86

3c822d6b9eb533203f59c3870dc1b82c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ProcessIdToSessionId
SetEnvironmentVariableA
FindResourceW
ExpungeConsoleCommandHistoryA
UnregisterWaitEx
ExtendVirtualBuffer
SetLastError
ClearCommBreak
GetDiskFreeSpaceW
VirtualAllocEx
CreateProcessInternalW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE