6955a8f96b236f08ea48002208198b9ed09d87186b93896841a71e6a28f26f13 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6955a8f96b236f08ea48002208198b9ed09d87186b93896841a71e6a28f26f13
Size

402KB
MD5

df77fd0245f527d31bfae20bd1a61b40
SHA1

0aeaa7fcb32651af8b021993319e1f90f6329d2b
SHA256

6955a8f96b236f08ea48002208198b9ed09d87186b93896841a71e6a28f26f13
SHA512

3f68c63bbcc36a57e9f53d43a170665097ecacd296fae4d57880308ba16ab759a9f1b4930644ceaa4129647420b8fcd8b9b23306a8168b44278f5e8bef5b9234
SSDEEP

6144:8aMg67bizPJMmqiM3BZ3oQME6cbE86eOGiqMKDJk4PwqsT2JDMFkCIwGeDr4DmLW:eNKPamqFZjROWV0T2m1ILe0Kk

Score

N/A

Malware Config

Signatures

Files

6955a8f96b236f08ea48002208198b9ed09d87186b93896841a71e6a28f26f13
.exe windows x86

a20d1989bb07d7b568900392d218fc50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
CreateMailslotA
GetProcessHeap
GetStringTypeW
InterlockedExchange
GetShortPathNameW
GetConsoleAliasA
SetEnvironmentVariableA
GetACP
DeleteFileA
CreateFileMappingW
CreateSemaphoreW
FatalExit
DeviceIoControl
SetCurrentDirectoryA
GetModuleHandleW
GetModuleHandleA
VirtualAlloc
DeleteFileA
WriteConsoleW
SetVolumeLabelA
CreatePipe
InitializeCriticalSection

mshtml

ShowModelessHTMLDialog
DllEnumClassObjects
ShowModalDialog
ShowHTMLDialog

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrs
Size: 393KB - Virtual size: 884KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.afdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ