9ca9010f50e2dae6062a23ae5cf22ff37da6111da4a8be9e610b8e9239a25252 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ca9010f50e2dae6062a23ae5cf22ff37da6111da4a8be9e610b8e9239a25252
Size

174KB
MD5

3e80dc7b2295ac4f017da95124717401
SHA1

ca76022cc8139ce2b2e418a4724dc042f6c8b194
SHA256

9ca9010f50e2dae6062a23ae5cf22ff37da6111da4a8be9e610b8e9239a25252
SHA512

bcb4a52cd6e2e4f55823a70a8d8bd311a4bb8573e227d4bf420010cace947c8eddbbf2048c02e2a071ceab40efc5f6f71a81896d914a4c2e3c29ffd5b1d9cf72
SSDEEP

3072:BbD11fMA+PXKz2VbBUaBmkIHkvK1/tX0+f9PABFVtpIe4p+X+giC:BbsAA6zwbBUaBmkskSDtJABRye4pe

Score

N/A

Malware Config

Signatures

Files

9ca9010f50e2dae6062a23ae5cf22ff37da6111da4a8be9e610b8e9239a25252
.exe windows x86

dae2264e721d7c66f7fa35e864d11aba

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
HeapFree
GetProcAddress
LoadLibraryA

Sections

.naked1
Size: - Virtual size: 464KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.naked2
Size: 125KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ