bf2fd79b74a860d642d7a38026a98c046276aa5ff98fdd415814154953c1a9cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf2fd79b74a860d642d7a38026a98c046276aa5ff98fdd415814154953c1a9cf
Size

56KB
MD5

4a7c9015c3d91d833366b0ef9727bcba
SHA1

10d2fdad4b3402821edb54544144d794bbcf2f1c
SHA256

bf2fd79b74a860d642d7a38026a98c046276aa5ff98fdd415814154953c1a9cf
SHA512

d2fe3737dc4d7f140334648b110fa688e6c589b980b6c1ae62d30dde169a99103b4654f142d2451d233add7843f223ccc62387a84a6eb149a7091ec08ba9b8cd
SSDEEP

768:qofMZzAcQiiC8GkiDgjvUoeyHFabNPHn7/qwtKeesx17/EAbki3TdgCs3XA6oq/a:evyHcz5F2ijaVRoq/stANlg

Score

N/A

Malware Config

Signatures

Files

bf2fd79b74a860d642d7a38026a98c046276aa5ff98fdd415814154953c1a9cf
.exe windows x86

f18fdf3499f8eac79a463b9cb1cd29e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFileEx
AddLocalAlternateComputerNameA
EnumResourceTypesW
GetConsoleCursorInfo
GetNamedPipeHandleStateW
lstrcat
IsProcessInJob
Process32FirstW
GetFullPathNameA
GetHandleContext
EnumSystemCodePagesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE