46097eb4cb53842c60b4fa720a63a2ddfcbe31bf234e79a7b4d8ffe684534d05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46097eb4cb53842c60b4fa720a63a2ddfcbe31bf234e79a7b4d8ffe684534d05
Size

58KB
MD5

fdd6e14b9062675fe80d93ee09c52f05
SHA1

5e302160a01d328f26f64023728168816a2903cb
SHA256

46097eb4cb53842c60b4fa720a63a2ddfcbe31bf234e79a7b4d8ffe684534d05
SHA512

fb9df79204e4fb3b52b9a082954fee7ed8e096e27983c6f46a205899b73c3d10251eb0d480c14a7f4675e11ae7cab92e22e0ed06dfa4a37586cc3d990b403406
SSDEEP

1536:elf56m+OTvv9PaCMgr9Ttt/XM/FQWl4UEaO8LDmCc:elfsm779JxtNvhTC

Score

N/A

Malware Config

Signatures

Files

46097eb4cb53842c60b4fa720a63a2ddfcbe31bf234e79a7b4d8ffe684534d05
.exe windows x86

763283b9bc3a4c57869ed580759d62fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
GetProcessHeap
lstrcmpiA
lstrcmpiA
lstrcmpiA
DeleteFileA
Sleep
SuspendThread
GetVolumePathNameA
lstrcmpiA
CreateNamedPipeA
GetLogicalDriveStringsA
WaitForSingleObject
GetDriveTypeW
GetModuleFileNameA
IsValidLocale
GetStdHandle
HeapCreate
lstrlenA
SetLastError
CreateMailslotA
lstrcmpiA
GetModuleHandleA

rastls

DllRegisterServer
DllUnregisterServer
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ