ec50585ba6ff8ec22d002f86f89f0202fe50b9a178e5a81b606075b7e206ab98 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec50585ba6ff8ec22d002f86f89f0202fe50b9a178e5a81b606075b7e206ab98
Size

108KB
MD5

11efa060d099ff0c2a6eb17112708a27
SHA1

3e6096fce21b5daef155aea29e44270f99f201ab
SHA256

ec50585ba6ff8ec22d002f86f89f0202fe50b9a178e5a81b606075b7e206ab98
SHA512

eb9ae82d3fed4f1641ccf01dbb1d09165bd12debd96e5294ea4f3d8a944093b55d1c29444566fc9d89717961747dffc7ba77c3a0733e6b1608ff645079c3df46
SSDEEP

1536:5VqW50Yqr3MsAbSpESGmdlwhgU2FCXZnXfh5Sj70paKGiP2tL/U+50q35op:bqWZEdrt6h7nXZ+Ypiq2tY+5F0

Score

N/A

Malware Config

Signatures

Files

ec50585ba6ff8ec22d002f86f89f0202fe50b9a178e5a81b606075b7e206ab98
.exe windows x86

56d0c9abbf059691efb4f614ca49f591

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTapeStatus
GetUserDefaultLangID
FindFirstVolumeMountPointA
GetACP
WriteFileGather
lstrcpynA
GetEnvironmentVariableA
CreateHardLinkA
RtlFillMemory
GetPrivateProfileStringA
CreateDirectoryExA
ResetWriteWatch
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

text
Size: 8KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ