adaafb6fa68382d3967eb78cde4a79652719346fbfb18edf1e6bbdd3d60eeff2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

adaafb6fa68382d3967eb78cde4a79652719346fbfb18edf1e6bbdd3d60eeff2
Size

128KB
MD5

2398e91df251d3ec5434f9e284a77d06
SHA1

99b3d55527a16631bbd44747b39678cbbcbcb86a
SHA256

adaafb6fa68382d3967eb78cde4a79652719346fbfb18edf1e6bbdd3d60eeff2
SHA512

8aebba39cc786673d48c5efa025127c953adba939c968abecc3b9bb65491ca57157b432e8e7e81241636c8e3d03c172f535afe2b5f58ac90f473490411349eb8
SSDEEP

3072:SUF1fFBJq1MuzTM+FO3KYWAHN9ifglDTPkAkLPr1o9UBs+E:lfFBAbM+FO3KUN9iftA+yOBsP

Score

N/A

Malware Config

Signatures

Files

adaafb6fa68382d3967eb78cde4a79652719346fbfb18edf1e6bbdd3d60eeff2
.exe windows x86

92bf7ea82a6a375498cea0a2dd566c1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateEventA
SetEndOfFile
SetCurrentDirectoryW
GetLogicalDriveStringsW
OpenMutexW
lstrcpyW
GetStringTypeW
LoadLibraryA
GetFileAttributesA
GetStdHandle
GetVersion
SetEndOfFile
SetEndOfFile
SetEndOfFile
VirtualProtectEx
SetEndOfFile

winhttp

WinHttpConnect
DllGetClassObject
WinHttpOpen
DllCanUnloadNow

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.data
Size: 803KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE