5b4b15e25a435312be17f4b7bb91efa12bf0a3614e595d12e38758c4d339e6ad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b4b15e25a435312be17f4b7bb91efa12bf0a3614e595d12e38758c4d339e6ad
Size

298KB
MD5

73921fb1647220a6f90db0b3a31365a2
SHA1

935314b97620d4bcad075917fde01af37c58befb
SHA256

5b4b15e25a435312be17f4b7bb91efa12bf0a3614e595d12e38758c4d339e6ad
SHA512

d54fcea5947585ea46015f08f06d81daa2ee1a60dc4428a45e1c35952f6b777f58b9ce98d38b697a3bcf14bd610551b547f20cbe5027f67dcabd22ede1e1fbcf
SSDEEP

6144:fkHXVdVhXDE6nVc/e1A5f6XVq4yZ4Sf7FfbJFnBsngTBfww7CNRS/:fk3VpLnV2e18f6lq4yKSzFfbJNBsgxwM

Score

N/A

Malware Config

Signatures

Files

5b4b15e25a435312be17f4b7bb91efa12bf0a3614e595d12e38758c4d339e6ad
.exe windows x86

0e729045391d8a916812b9ced9434ecd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNamedPipeA
HeapCreate
SetLastError
ReadFile
GetExitCodeProcess
GetLogicalDrives
EndUpdateResourceA
GetBinaryTypeA
lstrcmpiA
SetStdHandle
GetDriveTypeA
GetLocalTime
lstrcatW
GetStdHandle
TlsAlloc
IsValidCodePage
GetLastError
GetTickCount
SetPriorityClass
GetModuleHandleA
GetPrivateProfileStringA
CreateWaitableTimerA
GetConsoleTitleW

netshell

DllGetClassObject
HrLaunchConnection
HrGetIconFromMediaType
NcFreeNetconProperties

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataz
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpcx
Size: 1024B - Virtual size: 518B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ