2ff95afdba5bfc218d11ab44f8985befe9ec5c50ed5740282324a434c03919db | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ff95afdba5bfc218d11ab44f8985befe9ec5c50ed5740282324a434c03919db
Size

67KB
MD5

0fc3d3fda4994be960def8ddb5dc1e57
SHA1

2264fcd5bfa84ac2fa9a70e373145adef7bd18bd
SHA256

2ff95afdba5bfc218d11ab44f8985befe9ec5c50ed5740282324a434c03919db
SHA512

0571d53f9ee3b169bfc6d390494184396e8f3b5bbdd97288e17364551015e11789de8326a229bdea8634d983bab72f7437a4948cf11b8068d5d8938a79bfad0a
SSDEEP

1536:OBUT/DEeOkQbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbGILfKXV26wGrtbyAkDW2:+UXJcbbbbbbbbbbbbbbbbbbbbbbbbbbK

Score

N/A

Malware Config

Signatures

Files

2ff95afdba5bfc218d11ab44f8985befe9ec5c50ed5740282324a434c03919db
.exe windows x86

ce1f821a647b0bb4f09407f2908f1900

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetModuleHandleW
CreateFileMappingW
WriteConsoleW
Heap32First
GetProcessHeap
GetConsoleTitleA
DeleteFileA
Heap32Next
GetShortPathNameW
VirtualAlloc
GetStringTypeW
CreateMailslotW
DeleteFileA
SetFilePointer
SetCurrentDirectoryA
GetACP
GetConsoleAliasW
SetEnvironmentVariableA
GetStringTypeW
SetEndOfFile
GetVersion
DeleteFileA

msoeacct

DllGetClassObject
DllCanUnloadNow
ValidEmailAddress
GetDllMajorVersion

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avr
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ