ad8389b86dd084f22ff0fef6470cc31226317c99747839df8be471eb3cf09732 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad8389b86dd084f22ff0fef6470cc31226317c99747839df8be471eb3cf09732
Size

46KB
MD5

72ca9eedc141c204bc51efbe65ffe265
SHA1

bff5c42905a880ce3804c868e6db4fcfe0f3c37c
SHA256

ad8389b86dd084f22ff0fef6470cc31226317c99747839df8be471eb3cf09732
SHA512

6277512c23d49777ad9530ad4a7a8c044e3ae2d65703a72aecebbfbc543687b5a78d3284865e9ac1652ee3a7feb4f868a9a87f1bcb928d906a672f07a58c6110
SSDEEP

768:rLbLyjtCVKMjQY5zGBm6wYXNqGyuzgNr9U8Q482JyWbqgxBrZ2NzSDsBx:vyjUVKwN5z6DwcqAorv82JyPIdmB

Score

N/A

Malware Config

Signatures

Files

ad8389b86dd084f22ff0fef6470cc31226317c99747839df8be471eb3cf09732
.exe windows x86

2072c96fa3d24c728391af75b230cc98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
Process32Next
GetCurrentProcessId
Process32First
CreateToolhelp32Snapshot
GetProcAddress

Sections

.text
Size: 23KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kabasji
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE