f5082fbbebdd98a05133b195bdb5575b5ba847f04f794227cf71955d36b55349 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5082fbbebdd98a05133b195bdb5575b5ba847f04f794227cf71955d36b55349
Size

92KB
MD5

4ebba99873605a2e95088d402e97e611
SHA1

5ba9c04871aef568e7b748070b5b966363514a5f
SHA256

f5082fbbebdd98a05133b195bdb5575b5ba847f04f794227cf71955d36b55349
SHA512

3cf0371deadafb9432f20cc70bd93d31cff1ab0b79a2c56fabea2418dbdf69a8552be4e1a2fd1715b02579c9b501d936de3768bdd2714456183bff571f7a8bf9
SSDEEP

1536:80PU0bioMBw4mY8gICv6AK8X6m7HbM58xenxDDYl7QfZWNOnp2OxajQYqUZSNlW2:8080bioMBwLdZm6AK8X6ZnxHsxUxajEJ

Score

N/A

Malware Config

Signatures

Files

f5082fbbebdd98a05133b195bdb5575b5ba847f04f794227cf71955d36b55349
.exe windows x86

c95e2661ed3183fa3dde442f149c5518

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CloseHandle
EnumTimeFormatsA
GetConsoleInputWaitHandle
GetProcessTimes
LocalReAlloc
GlobalLock
FindVolumeClose
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
ReplaceFileA
LoadResource
GetComputerNameA
WriteFile
SystemTimeToFileTime
GetCommandLineA
GetStartupInfoA
ExitProcess
FindNextVolumeA
RegisterConsoleOS2
ExpandEnvironmentStringsA
HeapCompact
CloseHandle
GetComputerNameA
SetVDMCurrentDirectories
SetCommBreak
RtlFillMemory
GetSystemDefaultUILanguage

Sections

.xcode
Size: 4KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIJUNLI
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ