5b951f2e7d51937a26bd47c29ee6cd04331a2511e3393bc568e448c54915fb93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b951f2e7d51937a26bd47c29ee6cd04331a2511e3393bc568e448c54915fb93
Size

411KB
MD5

2d86f1b2f8975d94371973fb9ad16945
SHA1

99490fd031a03747fd648687b0a7bfe962946d4b
SHA256

5b951f2e7d51937a26bd47c29ee6cd04331a2511e3393bc568e448c54915fb93
SHA512

8d91b2170d94e2bfa47b249ec53a6251881c42126825a52f7f7515965edab601a88415d25444877e7306ebf96f20d121729e77d68b87ef3e97e9ed6f92bcb1f4
SSDEEP

12288:19b5RDjK5jW4tPVb5a64E9aCDl6g+7Hz:1w5a2PVlTaCDlM7Hz

Score

N/A

Malware Config

Signatures

Files

5b951f2e7d51937a26bd47c29ee6cd04331a2511e3393bc568e448c54915fb93
.exe windows x86

53a04849151a8b676806c5d39f1948c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Heap32Next
GetConsoleAliasA
DeleteFileA
WriteConsoleW
GetStringTypeW
DeleteFileA
SetEndOfFile
VirtualAlloc
SetEnvironmentVariableA
SetFilePointer
CreateMailslotA
GetACP
DeleteFileA
GetModuleHandleW
SetCurrentDirectoryA
GetShortPathNameW
SetVolumeLabelW
LoadLibraryA
CreateFileMappingW
GetConsoleTitleA
GetStringTypeW
GetProcessHeap
Heap32First

msoeacct

GetDllMajorVersion
ValidEmailAddress
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 403KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avr
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE