7f734c50440af1f0cd1b3604f2dfd69504ed13466ab0ea7343dba2195367028f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f734c50440af1f0cd1b3604f2dfd69504ed13466ab0ea7343dba2195367028f
Size

58KB
MD5

51b0c7931d67eb2e0fc1675971f35b8e
SHA1

e6aa7d1af1ee5c6158dfbc199665199e955d3e25
SHA256

7f734c50440af1f0cd1b3604f2dfd69504ed13466ab0ea7343dba2195367028f
SHA512

911b318cc437f76ec5d7a0f466b7cf375f72bc2549a56a2c9c041fee314cdc16f7a3a2a201c0d73b18b3558cfb77e7f9540f07952d4fd5c590edb5537f4b5f63
SSDEEP

1536:MZ5V2rQI/d+ViLXbRPc6s0kJHr0Vd+oKpPO67JVP:MDI/dNLrRU6lktRoKpfJ

Score

N/A

Malware Config

Signatures

Files

7f734c50440af1f0cd1b3604f2dfd69504ed13466ab0ea7343dba2195367028f
.exe windows x86

ccae35f328ee68df8378ecfc65372495

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
lstrlenA
SetLastError
WaitForSingleObject
FileTimeToLocalFileTime
lstrcmpiA
lstrcmpiA
GetProcessHeap
GetModuleHandleA
CreateMailslotA
lstrcmpiA
IsValidLocale
lstrcmpiA
GetLogicalDriveStringsA
Sleep
lstrcmpiA
DeleteFileA
HeapCreate
GetDriveTypeW
CreateNamedPipeA
GetModuleFileNameA
SuspendThread
GetVolumePathNameA

riched20

IID_IRichEditOle
RichEditANSIWndProc
IID_ITextHost
CreateTextServices

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.srt
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ