6c319292187c35a753c442c674e91245a8f157adb82169ee013a9d6d1867716e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6c319292187c35a753c442c674e91245a8f157adb82169ee013a9d6d1867716e
Size

400KB
MD5

598c97194384fc8a925aa068526d9170
SHA1

91b31f778c0dd3a64d327d36fce34add6175547c
SHA256

6c319292187c35a753c442c674e91245a8f157adb82169ee013a9d6d1867716e
SHA512

c0dade9e2e70a5bd3d51023fc891f6d5d50ed2603bf4e5d5442fde3ac3ee124efb53338d38c223b3c6af45abcc3dfcc8cf819ed23ed218b18eee3e22235a7b94
SSDEEP

6144:TQvsQiKP17gT56a6qd4HK1MRwPfSa7sz6XE13BOyfozn+9Rlzt4ZFXJnCIWO+f6h:EEQimu97eTetexO40+TlSFXJCI7+

Score

N/A

Malware Config

Signatures

Files

6c319292187c35a753c442c674e91245a8f157adb82169ee013a9d6d1867716e
.exe windows x86

ce1f821a647b0bb4f09407f2908f1900

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetModuleHandleW
CreateFileMappingW
WriteConsoleW
Heap32First
GetProcessHeap
GetConsoleTitleA
DeleteFileA
Heap32Next
GetShortPathNameW
VirtualAlloc
GetStringTypeW
CreateMailslotW
DeleteFileA
SetFilePointer
SetCurrentDirectoryA
GetACP
GetConsoleAliasW
SetEnvironmentVariableA
GetStringTypeW
SetEndOfFile
GetVersion
DeleteFileA

msoeacct

DllGetClassObject
DllCanUnloadNow
ValidEmailAddress
GetDllMajorVersion

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 393KB - Virtual size: 892KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ