518a73c2a8d932f55510f9f1fbbd6a29e7aa83da0ac354588fc21e814a1d4f40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

518a73c2a8d932f55510f9f1fbbd6a29e7aa83da0ac354588fc21e814a1d4f40
Size

58KB
MD5

1887e209f7962187900eed36b0e051bf
SHA1

933f01b2cc337b4671119434421f6194c8f44ffb
SHA256

518a73c2a8d932f55510f9f1fbbd6a29e7aa83da0ac354588fc21e814a1d4f40
SHA512

4159e8b807349902ad5e93b50679540273daa4c7544ed7a270f6fc0ecc949fa80d840b55a1658b041dfe144ba77f3a758570f02b529b3c736d77da57f763e6d0
SSDEEP

1536:l9aj+V6ZWSLXfFQCKZZzoHuDHHQWXxzVT:l9ajm6LdQXZZOuDtXx

Score

N/A

Malware Config

Signatures

Files

518a73c2a8d932f55510f9f1fbbd6a29e7aa83da0ac354588fc21e814a1d4f40
.exe windows x86

51ad80c9ae7f4df4196bb640029b52b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
SuspendThread
GetModuleFileNameA
Sleep
lstrcmpiA
lstrlenA
CreateNamedPipeA
GetModuleHandleA
GetDriveTypeW
GetProcessHeap
SetLastError
lstrcmpiA
lstrcmpiA
WaitForSingleObject
IsValidLocale
lstrcmpiA
CreateMailslotA
GetLogicalDriveStringsA
GetVolumePathNameA
lstrcmpiA
GetStdHandle
FileTimeToLocalFileTime
HeapCreate

rastls

DllRegisterServer
DllUnregisterServer
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ