575a8e4f257f95ea0b13ff66f0bf62c27804db404ad02cd2c10ea7063e8181f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

575a8e4f257f95ea0b13ff66f0bf62c27804db404ad02cd2c10ea7063e8181f2
Size

17KB
MD5

16e6aa35ce5e7a5096f86b9a34f3e050
SHA1

48c516088390ef111b4e693cb40f34bfb0d36c9e
SHA256

575a8e4f257f95ea0b13ff66f0bf62c27804db404ad02cd2c10ea7063e8181f2
SHA512

96f5dfb5038aa78f703876d0b6998e89716e036b2a12798cbbd8d195859aef367dccf35eae3353d39b005c9f0b6764dcffcbdc19c20e8603628b2c0ff6553962
SSDEEP

192:SzvxbS6+zvDkIk+ymSB47CAArxhEfYN84ATFj7wjPMSnuXfcr2w1dTVPfeZGMd:SdbK7YIk+S47C3f6qgVw7QYNEGMd

Score

N/A

Malware Config

Signatures

Files

575a8e4f257f95ea0b13ff66f0bf62c27804db404ad02cd2c10ea7063e8181f2
.exe windows x86

09e627c09043df95fa8cc81a0d5af49f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingW
GetModuleHandleA
CreateSemaphoreW
DeleteFileA
SetEnvironmentVariableA
WriteConsoleA
GetProcessHeap
VirtualAlloc
GetModuleHandleW
GetStringTypeW
GetShortPathNameA
FatalExit
DeleteFileA
CreateFileA
DeviceIoControl
SetVolumeLabelA
CreatePipe
GetACP
GetCurrentDirectoryW
CreateEventW
Sleep
CopyFileW
DeleteFileA

mshtml

DllCanUnloadNow
ShowModalDialog
DllGetClassObject
PrintHTML

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ