e47ec3b0e8531f7df2d51c4c12eaafbebc1ba1f515143e995487f7c08d20147b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e47ec3b0e8531f7df2d51c4c12eaafbebc1ba1f515143e995487f7c08d20147b
Size

102KB
MD5

4b1cd7e24d9363a10fb486839b1c5659
SHA1

2988572022eaf3baa03051c850190b3ff10c4901
SHA256

e47ec3b0e8531f7df2d51c4c12eaafbebc1ba1f515143e995487f7c08d20147b
SHA512

fed3f48de3f281272fa7f603f11594d61b9899354e2a090c01d833ca23c3498911fc7eb01a36897caeb7fa816a7d5e2eba1865bb336952d9c13853201a25d6e2
SSDEEP

1536:Ng6frzuBP347lVxOfKj4o6A3zKUrOgy/yfjI8AP:2HBf47lVaKj4o9eU1y/m5AP

Score

N/A

Malware Config

Signatures

Files

e47ec3b0e8531f7df2d51c4c12eaafbebc1ba1f515143e995487f7c08d20147b
.dll windows x86

4337a5c15a92fbf3bdf01348f2b563ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetCurrentProcessId
GetTickCount
UnhandledExceptionFilter
CreateRemoteThread
GetModuleHandleA
GetModuleHandleW
CloseHandle
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetLastError
GetCurrentThreadId
OpenProcess
Sleep
GetProcAddress
GetSystemTimeAsFileTime
GetCurrentProcess

advapi32

AdjustTokenPrivileges
OpenProcessToken
IsValidSid

Exports

Exports

mxap

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ