b34981d523ee35a8e39f312a4d437d67a1786348bbe128488d040e147872f392 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b34981d523ee35a8e39f312a4d437d67a1786348bbe128488d040e147872f392
Size

62KB
MD5

3891ac57847c32db8cd421d17dfbaaf0
SHA1

e5e4f4d0a39d241b171fed1d62926995ccb4b6ac
SHA256

b34981d523ee35a8e39f312a4d437d67a1786348bbe128488d040e147872f392
SHA512

bfcf6b4d4ffb8e0ce5a079becc632b0290c385276d56aecd10b27b57dc2b4253079033586850ff9ba61e8a005118e0a1c4ad13a23d058a2544389a8d229b14a9
SSDEEP

1536:0xpQ4l5kvKNq26ZPjSs6eFHIJ9uivLWo3TC5fuuNdfdT:0xaY+UqhZP2sxZQnysT2bdfdT

Score

N/A

Malware Config

Signatures

Files

b34981d523ee35a8e39f312a4d437d67a1786348bbe128488d040e147872f392
.exe windows x86

ae10db7fc1ced08bf481aeb4ac18b285

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BindIoCompletionCallback
GetStartupInfoA
GetThreadLocale
GlobalUnWire
WriteProcessMemory
GetFileAttributesW
RegisterWowBaseHandlers
ExitThread
EnumerateLocalComputerNamesA
CopyFileW
SetLocaleInfoA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE