614526b737c09d3312c248affe08ae9b9393c68181b05393b21eb7f903fc168b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

614526b737c09d3312c248affe08ae9b9393c68181b05393b21eb7f903fc168b
Size

56KB
MD5

ad4c0ddbb283c0d4c8ef5e1c9e899a78
SHA1

11c9134883fa5f66ff7a84269c376664a7a86d50
SHA256

614526b737c09d3312c248affe08ae9b9393c68181b05393b21eb7f903fc168b
SHA512

2a72f1395a044a1718c14b41a7bd7066821509a16c7c20d9bc4136766796b98a54469654feb334457c828b6c5cf0be28ad236cae19736b184ea41375c6e5d1d5
SSDEEP

768:+qXKvCjreUrQb2QQNVam3fYe80lsGjKSFCk078OskbkMBR53cyLh1CYWXSocx+Hz:NCm3fJlESFCk2Ph1CYWXSX+w4

Score

N/A

Malware Config

Signatures

Files

614526b737c09d3312c248affe08ae9b9393c68181b05393b21eb7f903fc168b
.exe windows x86

2b92312c82b343db38f4d154897207f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
GlobalAddAtomA
ShowConsoleCursor
FindCloseChangeNotification
EraseTape
UnregisterWaitEx
PeekConsoleInputA
GetConsoleCursorMode
GetVolumeInformationA
UpdateResourceA
EnumResourceNamesA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE