installer[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

installer.exe
Size

320KB
MD5

1c4f4198ff7eec19585328a028b1b220
SHA1

d1d5c3ffdfbe50c41ec323ff096ca2efe6e6f93a
SHA256

8cbc4de8053a106655e954a82d40ed1f456882f69cc6dfb13ed41e27a637375b
SHA512

6480257137f77c22efcb3c204a89a988a0fa46d2fdffccc001453c9d889e00bf3c94bb938fd54f44279e5771a2a0f62e1facecc8112b0f38e64f4b2ebc19593f
SSDEEP

6144:onXhVfm5pH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:onXQ2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

installer.exe
.exe windows x86

fd381d5391d12c804470d4c6e143e476

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleScreenBufferInfo
WTSGetActiveConsoleSessionId
TryEnterCriticalSection
IsProcessorFeaturePresent
SetThreadAffinityMask
WriteConsoleA
GetConsoleTitleW
IsValidLanguageGroup
SetThreadPriority

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE