af5b1a0ac07d4bdd072b75aaaa8c8675f7074e3765cc5e7606640becb6036f09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af5b1a0ac07d4bdd072b75aaaa8c8675f7074e3765cc5e7606640becb6036f09
Size

507KB
MD5

0e4f53db3be042cbc247411f3ee27e80
SHA1

fe7e9f335daa9844e8da175352d604f4f54535da
SHA256

af5b1a0ac07d4bdd072b75aaaa8c8675f7074e3765cc5e7606640becb6036f09
SHA512

6209aefb267b3586be251a1c1ef92455d5305ef106c6f7f204b95ba2c7b8f6b8cbf2b8dc2c11752ba81571b0502fa50cce2585a8892a6822594d129d2d34ad5c
SSDEEP

12288:IFN7OlUaf80cxak9+HxjkX010ZJvw+MlCOWfOTndMngmK:IFslS0cxaq8f10Z+IOsougmK

Score

N/A

Malware Config

Signatures

Files

af5b1a0ac07d4bdd072b75aaaa8c8675f7074e3765cc5e7606640becb6036f09
.exe windows x86

3e090340eb2bd07fa6b1869d4ec4ee7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
GetProcessHeap
HeapCreate
GetACP
WriteConsoleW
HeapFree
GetConsoleTitleA
GetShortPathNameW
DeleteFileA
GetConsoleAliasW
GetModuleHandleA
DeleteFileA
DeleteFileA
CreateMailslotW
SetCurrentDirectoryA
SetFilePointer
CreateFileMappingW
Heap32Next
GetExitCodeProcess
GetStringTypeW
GetModuleHandleW
GetVersion
SetEnvironmentVariableA

mstscax

DllCanUnloadNow
DllUnregisterServer
DllRegisterServer
DllGetTscCtlVer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 500KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ