f3efbe69127481972d3da833f6753a987f2e461f4ba1c142a7780a26241a9cba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3efbe69127481972d3da833f6753a987f2e461f4ba1c142a7780a26241a9cba
Size

62KB
MD5

56332dca59b13c1e84194217268e9f10
SHA1

a46b8ab2732c77acabc320eea22b9fdce53b0b71
SHA256

f3efbe69127481972d3da833f6753a987f2e461f4ba1c142a7780a26241a9cba
SHA512

8382463b14482d3b317f499cab874a295f5a119d748e7f8340f38643ad5d0b282343bb90bb12d1f131ca9b69adba908a31219a74ddc4b31b0ab4e71bd1c01a9f
SSDEEP

1536:KxoBQL22oKJGklg8/hAR154e0CQwuR5ceZBUn2i1sUOgqO:Ki9KJGMARYebQv5ceZBU2OOVO

Score

N/A

Malware Config

Signatures

Files

f3efbe69127481972d3da833f6753a987f2e461f4ba1c142a7780a26241a9cba
.exe windows x86

10187841a5365847435598b941a9d539

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpW
GetQueuedCompletionStatus
SetPriorityClass
GetCurrentActCtx
Beep
RtlMoveMemory
RtlCaptureStackBackTrace
CreateActCtxW
WaitNamedPipeA
CreateFiberEx
EnterCriticalSection
CloseHandle

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE