b1c42835bccf5f0202c748aaef0067b8b7aa2079408bf6935bf17814f210f8ea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1c42835bccf5f0202c748aaef0067b8b7aa2079408bf6935bf17814f210f8ea
Size

240KB
MD5

a4f8e6ba8f4d5d15344430c8db319353
SHA1

c9b35441c1b9f6561222f64fb9999051dd9195b0
SHA256

b1c42835bccf5f0202c748aaef0067b8b7aa2079408bf6935bf17814f210f8ea
SHA512

9e05198e12cce3f23b1b88ca66f597c642a9818b7706376a90cdcc3a8ec87ba2176478b834cc1e96af2aeef8094081e4e6d0190912d7abf911606e247147b0c9
SSDEEP

6144:wAZ8uHe6AfW4IBHrgJ2LQoj6XyROrhtcJqPE+Vswq5FWRc:w6e6ZTBHEJbeROTcJqXYJ

Score

N/A

Malware Config

Signatures

Files

b1c42835bccf5f0202c748aaef0067b8b7aa2079408bf6935bf17814f210f8ea
.exe windows x86

04709534ce6e7dabe4609a625cee72ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStdHandle
CloseHandle
VirtualAlloc
GetStartupInfoW
LocalFree
VirtualFree
SetStdHandle
GetTickCount

Sections

.text
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 548KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ