5f3e2b8c1678c644a677a3cd91149a48a776b1e4c63b3a0211abc414ec23c0ff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5f3e2b8c1678c644a677a3cd91149a48a776b1e4c63b3a0211abc414ec23c0ff
Size

307KB
MD5

33b060ea226c9b6fcb8f3fdb6c99d8a0
SHA1

dc2079b0a5124c42c610aacd4eae7eb18c0ab8a2
SHA256

5f3e2b8c1678c644a677a3cd91149a48a776b1e4c63b3a0211abc414ec23c0ff
SHA512

2c688e79c5a2408a88c6559f76d7c7f01688f4359007a8bd7ba61a04faabb6a741767859aee3d5ee25e94a6b34256baad85e7850a1aa358464dcfa01fa5f7a82
SSDEEP

6144:bpr7rLrLrLrbrrrxB0pEgPdI8yAJGABTg6a9sgBu6SN+oV3mShM6tESOzTKf:bpr7rLrLrLrbrrrxB0ag+8KA1Pa9tu68

Score

N/A

Malware Config

Signatures

Files

5f3e2b8c1678c644a677a3cd91149a48a776b1e4c63b3a0211abc414ec23c0ff
.exe windows x86

397a15bdd8ed31bf74a553519d555051

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMailslotA
GetShortPathNameW
GetModuleHandleA
GetProcessHeap
InterlockedExchange
CreateSemaphoreW
SetCurrentDirectoryA
VirtualAlloc
WriteConsoleW
GetACP
DeleteFileA
GetConsoleAliasA
DeviceIoControl
InitializeCriticalSection
GetStringTypeW
GetModuleHandleW
SetEnvironmentVariableA
FatalExit
SetVolumeLabelA
DeleteFileA
DeleteFileA
CreateFileMappingW
CreatePipe

mshtml

ShowModalDialog
ShowHTMLDialog
ShowModelessHTMLDialog
DllEnumClassObjects

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrs
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.afdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ