addf9fa2d68a32507c557f8b3b91d951a2bca8e0f64a90d5dd7a8151e97b64e2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

addf9fa2d68a32507c557f8b3b91d951a2bca8e0f64a90d5dd7a8151e97b64e2
Size

63KB
MD5

256d52adafc5d6681d635db49d98e0f0
SHA1

7ab79c6c556dd9d160c1c63fb96972e8bb371113
SHA256

addf9fa2d68a32507c557f8b3b91d951a2bca8e0f64a90d5dd7a8151e97b64e2
SHA512

e84ceb7ee3f67329cb4007d0649cf4a6de0f501d0d921d5d95f87ac8582e533f4bed670a9e368fecbf4a2b99c9e4aaf4725be2dd4f7c992698906ef2f9d83d0e
SSDEEP

1536:zsKADog/zRnWawl0r+FDWl2n9O1WuOijKKzzzzzzzz:zx2oYk6+Fce9O17

Score

N/A

Malware Config

Signatures

Files

addf9fa2d68a32507c557f8b3b91d951a2bca8e0f64a90d5dd7a8151e97b64e2
.exe windows x86

cb19ede60f4614ca336effe284b764d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
HeapCreate
GetModuleHandleW
CreateEventA
SetVolumeLabelA
GetCurrentDirectoryW
CreateFileA
Sleep
GetStringTypeA
GetModuleHandleA
CopyFileA
GetEnvironmentVariableW
GetVolumePathNameW
CreatePipe
VirtualFree
GetFullPathNameW
CreateSemaphoreA
CreateFileMappingA
FindClose
CreateMailslotA
GetFullPathNameW
ReadConsoleW
FindClose

mshtml

DllGetClassObject
DllCanUnloadNow
PrintHTML
ShowModalDialog

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ