6d6a03bd8620b89e081f3ba84680f170e36dadc6a2ca8d7dd8b5406a379cfb0c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d6a03bd8620b89e081f3ba84680f170e36dadc6a2ca8d7dd8b5406a379cfb0c
Size

303KB
MD5

41786d89b37be969b0cd4fd27301ba12
SHA1

51b3599cef0a573d5458796a37aba32188646960
SHA256

6d6a03bd8620b89e081f3ba84680f170e36dadc6a2ca8d7dd8b5406a379cfb0c
SHA512

9fb4c3c4cec01d7a4a574ef19a54c5cb827929c645b422448881b545615daad596f0bf787ab01cfec4a02b2c7290b715bfe2d1a41a45b412b892e000d0f56459
SSDEEP

6144:xFJaxOE5IKoGSEF2PgXhmwXMDyEkbIIfLqtd5DnBM+lKoMT3CEeA/Ies:f8D5IKtO1c75xo5DnbyShes

Score

N/A

Malware Config

Signatures

Files

6d6a03bd8620b89e081f3ba84680f170e36dadc6a2ca8d7dd8b5406a379cfb0c
.exe windows x86

d5af93e6578339b9f580547a694cc69f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
SetEnvironmentVariableA
GetStdHandle
lstrcatA
DeleteFileW
HeapFree
GetStringTypeW
lstrcmpiA
GetConsoleTitleA
GetTickCount
DeleteFileW
DeleteFileW
HeapCreate
GetLogicalDrives
GetShortPathNameW
IsValidCodePage
SetFilePointer
GetExitCodeProcess
GetLastError
GetModuleHandleW
HeapAlloc
GetModuleHandleA
GetVersion

netshell

DllRegisterServer
HrLaunchConnection
DllCanUnloadNow
HrCreateDesktopIcon

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataz
Size: 296KB - Virtual size: 296KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rs
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE