ba0d60c2b741d37a7b4a73e5ad57a6c8be34916e103c0e068d85987481453c77 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba0d60c2b741d37a7b4a73e5ad57a6c8be34916e103c0e068d85987481453c77
Size

56KB
MD5

4bf223596fedf4a9875f03d4c14d00a7
SHA1

c22baa539c01f05df813ded2e16b033309ced396
SHA256

ba0d60c2b741d37a7b4a73e5ad57a6c8be34916e103c0e068d85987481453c77
SHA512

11142cf74ed211169a23dcd33a81950a232b6503e8e6a38247dd409c5c7c7726afbdd5be201e24fc0b352ef316c3e564d7520a0756941579649b5bda02ce92d2
SSDEEP

1536:rFoz+TN398rnhhXDqcL4kMAmr3B9vIkYbua59NJx:rFoz+TR987hxDf8iofIkYvDx

Score

N/A

Malware Config

Signatures

Files

ba0d60c2b741d37a7b4a73e5ad57a6c8be34916e103c0e068d85987481453c77
.exe windows x86

70cef8ee36bed80d00ae5d28aa0409cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ChangeTimerQueueTimer
FindVolumeClose
MapViewOfFileEx
ReadConsoleOutputCharacterW
DeleteAtom
GetNumberFormatA
WriteConsoleInputW
VirtualProtectEx
TrimVirtualBuffer
GetHandleInformation
HeapUnlock

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE