473ef7f08bc1fc0b35b931d637d79496f0efd8c7c297c806bea400ee15084fd9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

473ef7f08bc1fc0b35b931d637d79496f0efd8c7c297c806bea400ee15084fd9
Size

303KB
MD5

36f369bff99444911966ee36d7abfa80
SHA1

036b5ceeade6e7eb4eaef1dc72df208b4a9aa3a4
SHA256

473ef7f08bc1fc0b35b931d637d79496f0efd8c7c297c806bea400ee15084fd9
SHA512

e11af8c94709a181fb11b43edba6e4221fa53ffb9406cef5da81f171a73b1c5721c17b5b31c97336c7abc58cc73bdabe3012793f12aa2acb32219983f5d2244c
SSDEEP

6144:D4ca1di4KhufBnlrWt1710qWpqQE4LNM09XWwK:Ded4+NlCtipjLNMQmw

Score

N/A

Malware Config

Signatures

Files

473ef7f08bc1fc0b35b931d637d79496f0efd8c7c297c806bea400ee15084fd9
.exe windows x86

1f43b0d5c374075a4bf03c36b569ec11

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetTickCount
GetVersion
HeapCreate
GetConsoleTitleA
SetFilePointer
GetStdHandle
SetEnvironmentVariableA
GetDriveTypeA
DeleteFileW
GetShortPathNameW
GetStringTypeW
GetExitCodeProcess
IsValidCodePage
DeleteFileW
GetLastError
GetModuleHandleA
lstrcmpiA
HeapAlloc
GetModuleHandleW
DeleteFileW
lstrcatA
GetStringTypeW

netshell

DllRegisterServer
HrLaunchConnection
DllCanUnloadNow
HrCreateDesktopIcon

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataz
Size: 296KB - Virtual size: 296KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rs
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE