965ea2a91f8f2766bc9941a08dec0fdbe78d54820d4f9aeaa232e5a0ef72a67a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

965ea2a91f8f2766bc9941a08dec0fdbe78d54820d4f9aeaa232e5a0ef72a67a
Size

495KB
MD5

4e27b5dcd494a43e39107c03170bab20
SHA1

061fdefc48345ba380e801416c21dfbac7a00f98
SHA256

965ea2a91f8f2766bc9941a08dec0fdbe78d54820d4f9aeaa232e5a0ef72a67a
SHA512

58264fadb96c894c752f91b7d430552b609024bc5de5443df4daecbae014fb9f72c35f847af845d72947735261037e67a2010a6050a4c5b32954b4f4e7bf76f3
SSDEEP

12288:z9WIU4UzpDJLbArJuEz+Wj9aiMmvXLYLbZyz:zoz2daN7Y7+4

Score

N/A

Malware Config

Signatures

Files

965ea2a91f8f2766bc9941a08dec0fdbe78d54820d4f9aeaa232e5a0ef72a67a
.exe windows x86

5522e669363b0028cd4741f6c209af44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GetStdHandle
GetTickCount
IsValidCodePage
lstrcatW
GetBinaryTypeA
GetLogicalDrives
EndUpdateResourceA
GetLocalTime
GetDriveTypeA
lstrcmpiA
CreateNamedPipeA
GetExitCodeProcess
lstrcmpiA
CreateWaitableTimerW
GetPrivateProfileStringA
GetModuleHandleA
lstrcmpiA
lstrcmpiA
FileTimeToLocalFileTime
lstrcmpiA
TlsFree
SetLastError

netshell

DllGetClassObject
NcFreeNetconProperties
HrLaunchConnectionEx
HrGetIconFromMediaType

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 488KB - Virtual size: 1012KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 560B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ