13c3fb9b838e5cf46442074d7a5d2951c63942508ab18c56fd8f42ff4e9289b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13c3fb9b838e5cf46442074d7a5d2951c63942508ab18c56fd8f42ff4e9289b4
Size

67KB
MD5

0c247cb4c3d52d6ac4dac09c50a5ca10
SHA1

72a618b2f9cbc2ca99004820723c653371faab79
SHA256

13c3fb9b838e5cf46442074d7a5d2951c63942508ab18c56fd8f42ff4e9289b4
SHA512

492a0b870ac876a260ef8f00d00216f6b5d6405d88f127b7bd7bc318b5979e4ca04a9a2e9ea6a226513faf310375e748e1e1d11940fc734c5edcb9bde0fc9d8f
SSDEEP

1536:dcS+iYNCdZNTmWan/EujWMTvR7rOx6trf8flmiPPnTW3:dTvmWAFjW4vZrOE1qmiPPnTg

Score

N/A

Malware Config

Signatures

Files

13c3fb9b838e5cf46442074d7a5d2951c63942508ab18c56fd8f42ff4e9289b4
.exe windows x86

5d2ced4b18c9a9b533d24a969ce4175c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleAliasA
DeviceIoControl
InitializeCriticalSection
CreateSemaphoreW
VirtualAlloc
WriteConsoleW
SetCurrentDirectoryA
GetShortPathNameW
GetModuleHandleA
GetModuleHandleW
DeleteFileA
SetEnvironmentVariableA
GetProcessHeap
CreatePipe
CreateMailslotA
DeleteFileA
CreateFileMappingW
SetVolumeLabelA
GetACP
InterlockedExchange
DeleteFileA
FatalExit
GetStringTypeW

mshtml

ShowModelessHTMLDialog
DllEnumClassObjects
ShowModalDialog
ShowHTMLDialog

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrs
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.afdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ