875aab4628036ffd9615f716a9b37a6e279749e9e8dc9ded7f4261dc4b4ab092 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

875aab4628036ffd9615f716a9b37a6e279749e9e8dc9ded7f4261dc4b4ab092
Size

114KB
MD5

0d720f6a20a9209f9c80abca68b26c20
SHA1

7ef0a23923778b0b4e68d5335e4a02e518d3c168
SHA256

875aab4628036ffd9615f716a9b37a6e279749e9e8dc9ded7f4261dc4b4ab092
SHA512

ada7fe55d4292f8ea07ba7cd17be7cbba2069c9c3f69e4f936a0f606de9aa9ea190025898b9c3059f0192633a8bbed8a9b7c8d85eaf71f3932b08a7478081793
SSDEEP

3072:ex519Fns1z/tSqscMzbR5ioZBLX7NT0lkBc7:m5Nsd/tSqpYPpZN0lV

Score

N/A

Malware Config

Signatures

Files

875aab4628036ffd9615f716a9b37a6e279749e9e8dc9ded7f4261dc4b4ab092
.exe windows x86

50e55f8e69cc080d08b35b69a0b0b293

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetModuleHandleA
GetShortPathNameW
TlsAlloc
GetLastError
lstrcmpiA
GetLocalTime
SetFilePointer
GetDriveTypeA
GetModuleHandleW
GetConsoleTitleA
HeapFree
GetVersion
GetStringTypeW
IsValidCodePage
GetLogicalDrives
SetEnvironmentVariableA
GetExitCodeProcess
lstrcatW
HeapCreate
SetLastError
SetPriorityClass
GetStdHandle

netshell

HrLaunchConnection
HrCreateDesktopIcon
DllCanUnloadNow
DllRegisterServer

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataz
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE