c8ba1e3a842d1ba436f1e5a86ca9ac7103ee49b5a47f24704e6bdda629284ccd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8ba1e3a842d1ba436f1e5a86ca9ac7103ee49b5a47f24704e6bdda629284ccd
Size

305KB
MD5

9eb25800e62e3592cca130995c482c1b
SHA1

da042d26b744559f220dccc5ec0c2976103de8ca
SHA256

c8ba1e3a842d1ba436f1e5a86ca9ac7103ee49b5a47f24704e6bdda629284ccd
SHA512

b054e6fd4f0ccba639a6583b041861a42996884acf63458b7e802c62d71f80b06437e8be0660b269988a84eba5816d1d700fd6f3bc818d6fbb34368c98a5b72d
SSDEEP

6144:n9zOTlppJYy2yx1JeVTnbyxjtl6L+9RJSsNq2yoofd2Ef:Ng7iTnbOlR7q2yXYE

Score

N/A

Malware Config

Signatures

Files

c8ba1e3a842d1ba436f1e5a86ca9ac7103ee49b5a47f24704e6bdda629284ccd
.exe windows x86

a4812ed8c737128d92e7cec8159fe090

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleAliasW
SetEndOfFile
GetConsoleTitleA
GetModuleHandleW
GetStringTypeW
LoadLibraryA
DeleteFileA
Heap32First
SetEnvironmentVariableA
Heap32Next
DeleteFileA
SetCurrentDirectoryA
CreateFileMappingW
GetProcessHeap
GetVersion
GetACP
VirtualAlloc
CreateMailslotW
GetShortPathNameW
GetStringTypeW
WriteConsoleW
SetFilePointer
DeleteFileA

msoeacct

DllGetClassObject
GetDllMajorVersion
ValidEmailAddress
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ