0161ffa44e0e6d5a991779385e03b62e8ed63b469b4b47463e0cae8c14a87444 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0161ffa44e0e6d5a991779385e03b62e8ed63b469b4b47463e0cae8c14a87444
Size

56KB
MD5

d346ee647a9f784defee38247636a1fe
SHA1

d23105000aba993b0b13f5ebecb547054b7e5daa
SHA256

0161ffa44e0e6d5a991779385e03b62e8ed63b469b4b47463e0cae8c14a87444
SHA512

a2e0dab7240db3489758d8d34cc735e7271d48dcfe84d3f43f05a8d2a7a079d35016c58ef30eb0f7054e7e1b3285fe2647ac48d08405e811921329c969b13293
SSDEEP

1536:KZC2T9TwLYA4YRU42wYyC1ckouV2WctpzVd0vgI:iC253A4YR7/koucWmjSv

Score

N/A

Malware Config

Signatures

Files

0161ffa44e0e6d5a991779385e03b62e8ed63b469b4b47463e0cae8c14a87444
.exe windows x86

66c622233789e60092a3edb371d9fbb9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleFont
CreateFiber
ExpandEnvironmentStringsA
GlobalFix
GetVolumeInformationA
EnumResourceNamesA
RtlCaptureContext
GetOverlappedResult
DuplicateConsoleHandle
WriteConsoleInputA
ExpungeConsoleCommandHistoryA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE