6f41d8a472ae46476b2498677ddd44deea4c02c2d49df4a07b89178b473853b5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6f41d8a472ae46476b2498677ddd44deea4c02c2d49df4a07b89178b473853b5
Size

119KB
MD5

66d4078c27771768b5fac772f8ece34d
SHA1

906842d4b89e25b58e1eabee1cfa73ba6ead6320
SHA256

6f41d8a472ae46476b2498677ddd44deea4c02c2d49df4a07b89178b473853b5
SHA512

69b62965d920a7015c15617e20dcc45bf082827cecfd02528e8351d8197518a36666f489a4b5a3af2b3b88eed634760902ddc1a04bcfff3f680f6b8f4be3b29d
SSDEEP

3072:/bXWxHRux3ihnRREh8hcLRZKfGgxV77UV/ANmm:DGoShQh8hJfGOkV/AN

Score

N/A

Malware Config

Signatures

Files

6f41d8a472ae46476b2498677ddd44deea4c02c2d49df4a07b89178b473853b5
.exe windows x86

8cc204084fc74fab61c2514985d39262

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetProcessHeap
DeleteFileA
GetShortPathNameW
VirtualAlloc
SetVolumeLabelA
InterlockedExchange
SetCurrentDirectoryA
CreatePipe
DeviceIoControl
SetEnvironmentVariableA
CreateSemaphoreW
GetModuleHandleA
DeleteFileA
InitializeCriticalSection
GetConsoleAliasA
GetACP
GetModuleHandleW
WriteConsoleW
GetStringTypeW
CreateFileMappingW
FatalExit
CreateMailslotA

mshtml

ShowModelessHTMLDialog
ShowHTMLDialog
DllEnumClassObjects
ShowModalDialog

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrs
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.afdr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ