6cefb7e3e565ed839113c8a74b9e422420f875a68c44176ed36be5797bf7f8c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6cefb7e3e565ed839113c8a74b9e422420f875a68c44176ed36be5797bf7f8c1
Size

411KB
MD5

aa5187ac4e8667030222b152bd5a921b
SHA1

001c44181dd767be7448df367b7bd399bc73f41d
SHA256

6cefb7e3e565ed839113c8a74b9e422420f875a68c44176ed36be5797bf7f8c1
SHA512

776fa8fba7c85e44c4f0c0fcd4831b470f5fe1f94dffe0b9e0748fa87f37a3274d5e9715683b900251a342987f28a0fca85ff59f990fbba2333a84f54885e5cb
SSDEEP

12288:j9b5RDjK5jW4tPVb5a64E9aCDl6g+7Hz:jw5a2PVlTaCDlM7Hz

Score

N/A

Malware Config

Signatures

Files

6cefb7e3e565ed839113c8a74b9e422420f875a68c44176ed36be5797bf7f8c1
.exe windows x86

53a04849151a8b676806c5d39f1948c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Heap32Next
GetConsoleAliasA
DeleteFileA
WriteConsoleW
GetStringTypeW
DeleteFileA
SetEndOfFile
VirtualAlloc
SetEnvironmentVariableA
SetFilePointer
CreateMailslotA
GetACP
DeleteFileA
GetModuleHandleW
SetCurrentDirectoryA
GetShortPathNameW
SetVolumeLabelW
LoadLibraryA
CreateFileMappingW
GetConsoleTitleA
GetStringTypeW
GetProcessHeap
Heap32First

msoeacct

GetDllMajorVersion
ValidEmailAddress
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 403KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avr
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE