af31f484a7ad215269dbfe7c98ce37ebe2d631f801565ded07e1b608cc14a351 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af31f484a7ad215269dbfe7c98ce37ebe2d631f801565ded07e1b608cc14a351
Size

91KB
MD5

028db7a24b760a337e2fc001e809ba01
SHA1

3ce97d7a7896c1651b2a7cd167452261eb42e522
SHA256

af31f484a7ad215269dbfe7c98ce37ebe2d631f801565ded07e1b608cc14a351
SHA512

ee13aca19344ef611d300137eabc135d5a32afaf28b16d0a9767f8ae911bcb3a4a7ceaab8a3e7ae068129bdce00f25063cbb77d1506d9f09f30845193633ac06
SSDEEP

1536:fyTumPVV/1v1UEX1U4kBj9n5mgsx7YYi/vbBOxqaAbCaxSFGs+M647eg0aUUR1Gb:fyltUEFU4UqxDe4qPbC+N90FX

Score

N/A

Malware Config

Signatures

Files

af31f484a7ad215269dbfe7c98ce37ebe2d631f801565ded07e1b608cc14a351
.exe windows x86

d7aadcc94b889f72e1a36d95cccf19c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteProcessMemory
DosPathToSessionPathW
Heap32ListNext
CreateProcessW
GetDriveTypeA
FatalAppExitW
EnumLanguageGroupLocalesA
AddAtomW
GetProcessHeaps
GlobalHandle
SetConsoleIcon
ValidateLCType

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 67KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE