af6d42978a6fec62d30676c5cc2c9373e93ecfb4948d5e3df01d8904a4f551a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af6d42978a6fec62d30676c5cc2c9373e93ecfb4948d5e3df01d8904a4f551a7
Size

179KB
MD5

0a619958035adf9855a0d0f2e6587896
SHA1

fad25739dc7a52884ccc0cfcf6badc8c75e8d3d5
SHA256

af6d42978a6fec62d30676c5cc2c9373e93ecfb4948d5e3df01d8904a4f551a7
SHA512

22c3b12a1c04c986cbb10a708fa95eeee7f40d0e96f9b9de0c1336eae4b6aa4a1088e398475f6e1b201f5d0ac785da2132dc3bb12ec097703ae6a68c6cb07095
SSDEEP

3072:gJRTEBlx7YKC+S3O4jrAp9MjJFc0wK4yMP75ws6YiLqlRCsTP60P9m/sA355rUSa:gfTEb9YKCVI9MjJ60wqMP75Z6ClTP60Z

Score

N/A

Malware Config

Signatures

Files

af6d42978a6fec62d30676c5cc2c9373e93ecfb4948d5e3df01d8904a4f551a7
.exe windows x86

47a275bc228c04e67f848edbb16b3f0a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
_lcreat
EnumDateFormatsExA
GetLocaleInfoW
WriteFileGather
FoldStringW
PostQueuedCompletionStatus
ExpandEnvironmentStringsW
LocalAlloc
lstrcpynA
GetCalendarInfoW
SetFileApisToOEM
AssignProcessToJobObject
GetThreadPriorityBoost
WriteProfileSectionW
EnumLanguageGroupLocalesW
CreateMailslotW
SizeofResource
GetFileAttributesExW
GetCommConfig
QueryPerformanceFrequency
MoveFileExA
IsSystemResumeAutomatic
GetComputerNameExW
GetCurrentDirectoryA
GlobalDeleteAtom
GlobalCompact
Process32FirstW
PurgeComm
GetThreadContext
GetProcessTimes
LCMapStringA
WaitForMultipleObjects
LocalReAlloc
GetComputerNameExA

user32

AppendMenuA
UnionRect
InsertMenuW

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE