5ce777148084da8658051e15477312aabc01566b1692fc1db79d7bd4a18c3c0d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ce777148084da8658051e15477312aabc01566b1692fc1db79d7bd4a18c3c0d
Size

28KB
MD5

94f096275c73ef41facb73b5f6fdf180
SHA1

4b7f9de696da4ac7ffa3c47fdb451ae056105c81
SHA256

5ce777148084da8658051e15477312aabc01566b1692fc1db79d7bd4a18c3c0d
SHA512

01e3e84657e25e241508dc25d845a6f14f0bd0fd1d5d49a9e90646321f852fdf04823fc22b27c2d3a1a4c33694607475e8e84f3da2cfeba67bcf00caa65bf443
SSDEEP

768:7MOdRK4oKAx2K3vN9vo27yw2beNCB45M:h/KlXr3vNZew2KN

Score

N/A

Malware Config

Signatures

Files

5ce777148084da8658051e15477312aabc01566b1692fc1db79d7bd4a18c3c0d
.dll windows x86

604af5cd27fa86801742fdf7dd75fd6c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtClose

basesrv

BaseSetProcessCreateNotify
BaseSrvNewObDirAcls
BaseSrvNlsLogon
BaseSrvNlsUpdateRegistryCache
ServerDllInitialization

Exports

Exports

BaseSetProcessCreateNotify
BaseSrvNewObDirAcls
BaseSrvNlsLogon
BaseSrvNlsUpdateRegistryCache
ServerDllInitialization

Sections

.text
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE