57fe970a37d65c405fee5d145d34a5fb3f0c5f8fa2f795ea6cd0633fb1495a58 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

57fe970a37d65c405fee5d145d34a5fb3f0c5f8fa2f795ea6cd0633fb1495a58
Size

418KB
MD5

1c8428aa4d987d3bce5fdfa5a1867860
SHA1

56668a1bdec339e83594a1db4157c38dc1153ae1
SHA256

57fe970a37d65c405fee5d145d34a5fb3f0c5f8fa2f795ea6cd0633fb1495a58
SHA512

d4d176d9c0654a5604f6f3b70fbd854de38b6e3844dc09465d372b0e503959274c04b6fbd272fef7bce4048e2ee1e2ce77ea33ccfedd27e79e4e432511f03eaa
SSDEEP

6144:wQajUnXf3oe1lP01u/0FxRMVkTWh5yGLwYu6/R+MexmitdHR/OKAWp2DeeHRabWO:fv4e70oMeJ5yGLfo3H4RaQy

Score

N/A

Malware Config

Signatures

Files

57fe970a37d65c405fee5d145d34a5fb3f0c5f8fa2f795ea6cd0633fb1495a58
.exe windows x86

11c233915d08d825833f88348f728141

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
GetVolumePathNameW
GetModuleHandleA
CreateSemaphoreA
CreateFileMappingA
VirtualFree
WriteConsoleA
Sleep
CreatePipe
FindClose
CreateEventA
GetFullPathNameW
GetCurrentDirectoryW
SetVolumeLabelA
GetModuleHandleW
FindClose
CreateFileA
FindClose
GetFullPathNameW
CreateMailslotA
HeapCreate
CopyFileA
GetStringTypeA

mshtml

ShowModalDialog
DllCanUnloadNow
PrintHTML
DllGetClassObject

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES
Size: 410KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ