9CB27B834120D2238FC81F78C7EB5AD53EF8DC4C51E6C1FF02B3CF3E2C9196B1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9CB27B834120D2238FC81F78C7EB5AD53EF8DC4C51E6C1FF02B3CF3E2C9196B1
Size

628KB
MD5

b2a7fe61f6312b84133a376a9a16015a
SHA1

2f71c456d07cac5aa67566d1a5c5719112a0774b
SHA256

9cb27b834120d2238fc81f78c7eb5ad53ef8dc4c51e6c1ff02b3cf3e2c9196b1
SHA512

f8863ba923eee8410a66adaf00feb78c0516b5d6be6486b642ac57fd18e6107c2c8d88ac7572a0893a5e76e91c2a99272360923d63bce7ad828a5559302cfd03
SSDEEP

12288:grfuXrWMEPM1AzsMfMxsUn9xSkfWTezMETgjOCN7OIdmH:jXG7UsUnLq2pAOIo

Score

1^/10

Malware Config

Signatures

Files

9CB27B834120D2238FC81F78C7EB5AD53EF8DC4C51E6C1FF02B3CF3E2C9196B1
.zip
ZvfonBmhKpliJRP.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 679KB - Virtual size: 678KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ