157b98ebc01d0378e843623ee3da97b70bed59ead0cf1a5f8661d89485384810 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

157b98ebc01d0378e843623ee3da97b70bed59ead0cf1a5f8661d89485384810
Size

116KB
MD5

1d474bd1ceedb2e748c8c65dad750fd0
SHA1

040004bd10869bd06d9cd22844e254ebf00264ee
SHA256

157b98ebc01d0378e843623ee3da97b70bed59ead0cf1a5f8661d89485384810
SHA512

913cfa669fb746e86ac0fe341fa38aa68a1d4d31c16db7085de8f6a651a8b656a934c2537edc77169c4e7204189471dd76a5df4b33e65bcff56bc93cc16cb0c9
SSDEEP

3072:R/iN7rJoUd6GlWD6vE7f1MnA9fz2f9HdPXb0I28:WPJoUdvl1kd0VHxXf

Score

N/A

Malware Config

Signatures

Files

157b98ebc01d0378e843623ee3da97b70bed59ead0cf1a5f8661d89485384810
.exe windows x86

38da28ecf4eb97176e81a92eea6765cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
CreateFileMappingW
Heap32Next
GetModuleHandleW
GetStringTypeW
GetProcessHeap
DeleteFileA
WriteConsoleW
SetFilePointer
GetConsoleTitleA
GetACP
HeapFree
GetStringTypeW
CreateMailslotW
GetVersion
DeleteFileA
GetShortPathNameW
SetCurrentDirectoryA
SetEnvironmentVariableA
HeapCreate
GetExitCodeProcess
GetModuleHandleA
GetConsoleAliasW

mstscax

DllGetTscCtlVer
DllUnregisterServer
DllCanUnloadNow
DllRegisterServer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ