af74b25e3868b08ed5bf52648bbadc9e3aa7b7347ac876159f50a356cd56359f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af74b25e3868b08ed5bf52648bbadc9e3aa7b7347ac876159f50a356cd56359f
Size

305KB
MD5

3945b77a8817b777c158f1007ba63d50
SHA1

d50267c0d9e8f39659b3f2f015126356cf9453d4
SHA256

af74b25e3868b08ed5bf52648bbadc9e3aa7b7347ac876159f50a356cd56359f
SHA512

61fa2feb2b940cb501c565b498930db5960334abb8b4d6cd60a64a403be776b0512fefab0974f664ec86076b39552ba085a6fd29c59b52dba0eca7e121290f61
SSDEEP

6144:TO+2lnHHnHrLrLLrLrDh4NhcgVBpZqcFb7m1l8Y9XDEsYvB4k2vQ0:na47c+Bvnhm1CgeuQ0

Score

N/A

Malware Config

Signatures

Files

af74b25e3868b08ed5bf52648bbadc9e3aa7b7347ac876159f50a356cd56359f
.exe windows x86

cf63606c01244251de4d0391c512c2df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
FatalExit
GetConsoleAliasA
DeviceIoControl
CreateSemaphoreW
WriteConsoleW
CreateMailslotA
CreateFileMappingW
GetProcessHeap
GetShortPathNameW
CreatePipe
GetStringTypeA
GetModuleHandleW
SetVolumeLabelW
VirtualAlloc
DeleteFileA
GetStringTypeW
SetCurrentDirectoryA
SetEnvironmentVariableA
GetACP
DeleteFileA
InitializeCriticalSection
LoadLibraryA

mshtml

DllEnumClassObjects
ShowHTMLDialog
ShowModelessHTMLDialog
ShowModalDialog

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ