b673ce337ace93edae3905562549c3bd0417e7bcdf8a1e5a410a99a88568a12b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b673ce337ace93edae3905562549c3bd0417e7bcdf8a1e5a410a99a88568a12b
Size

63KB
MD5

1fdbb49fc3aefe98e4f8a56cdda44a51
SHA1

1036a5528840a5bba6cc9f20f0aa7c88719f20c8
SHA256

b673ce337ace93edae3905562549c3bd0417e7bcdf8a1e5a410a99a88568a12b
SHA512

2cbc6c5393268d358becf9a0f906c9c45e537e1e82d48b769d6d1ed1b3992bd55441e324c5588f3d585d65ba5bb781b5d69dd57a364efa3ef48eb95990f4cef1
SSDEEP

1536:7L4fsJADJo/+pdf4aaKOMP2NC5n4bSrdTjMpAOvb:H4fsJCJM2daKOI2oNrdTjNw

Score

N/A

Malware Config

Signatures

Files

b673ce337ace93edae3905562549c3bd0417e7bcdf8a1e5a410a99a88568a12b
.exe windows x86

0ad15d62fade9faa59d461cadde89ec9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFileEx
_hread
_lopen
GetTickCount
LoadLibraryW
DosPathToSessionPathW
DeleteVolumeMountPointW
GetTempFileNameW
IsValidCodePage
CreateDirectoryExA
SetConsoleTitleA
GetConsoleAliasA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE