a8468969f90f4b884c49c899d2d6e10a64a9db735c8d942bc7d01e44b945afe9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a8468969f90f4b884c49c899d2d6e10a64a9db735c8d942bc7d01e44b945afe9
Size

393KB
MD5

a0c0601cc2d90d0322c59390cb99dc62
SHA1

55bc6067f865bb4192b3e0e089c4e70bf029d69e
SHA256

a8468969f90f4b884c49c899d2d6e10a64a9db735c8d942bc7d01e44b945afe9
SHA512

72ca5d9427ffd1f4569cb468e86995de6fd0cea908fb25ecc057402683ca019ab5544847a481f7813c0cec68b20bc0ef0acf65c3a733b06c23a8a915da327c7a
SSDEEP

6144:z0tvsQiKP17gT56a6qd4HK1MRwPfSa7sz6XE13BOyfozn+9Rlzt4ZFXJnCIWO+fc:z0tEQimu97eTetexO40+TlSFXJCI7+

Score

N/A

Malware Config

Signatures

Files

a8468969f90f4b884c49c899d2d6e10a64a9db735c8d942bc7d01e44b945afe9
.exe windows x86

8221520d8d78267af8816bf0288127d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GetShortPathNameW
SetEnvironmentVariableA
Heap32Next
GetConsoleAliasW
DeleteFileA
WriteConsoleW
GetStringTypeW
GetProcessHeap
DeleteFileA
SetCurrentDirectoryA
DeleteFileA
CreateFileMappingW
GetStringTypeW
GetModuleHandleW
CreateMailslotW
GetConsoleTitleA
LoadLibraryA
GetVersion
GetExitCodeProcess
GetACP
SetFilePointer
HeapFree

mstscax

DllRegisterServer
DllUnregisterServer
DllGetTscCtlVer
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 386KB - Virtual size: 900KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ