03a9248837763c04c123dda04ef228012555edc10aec8acb07e8fcb816971fc0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03a9248837763c04c123dda04ef228012555edc10aec8acb07e8fcb816971fc0
Size

507KB
MD5

1667b0504c8c49446402c8941ed9b280
SHA1

bc44af03411c956a2185b8ef9bb8e236bd3dacfa
SHA256

03a9248837763c04c123dda04ef228012555edc10aec8acb07e8fcb816971fc0
SHA512

79793be339e73ad147e16113c54331dc52ba0ca72bfeec01e59fe5bb31e690614ac99377263cd831c9524e67605d509d2e4fd001f3c9d00b0926b73a497f425e
SSDEEP

12288:IcN7OlUaf80cxak9+HxjkX010ZJvw+MlCOWfOTndMngmK:IcslS0cxaq8f10Z+IOsougmK

Score

N/A

Malware Config

Signatures

Files

03a9248837763c04c123dda04ef228012555edc10aec8acb07e8fcb816971fc0
.exe windows x86

3e090340eb2bd07fa6b1869d4ec4ee7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
GetProcessHeap
HeapCreate
GetACP
WriteConsoleW
HeapFree
GetConsoleTitleA
GetShortPathNameW
DeleteFileA
GetConsoleAliasW
GetModuleHandleA
DeleteFileA
DeleteFileA
CreateMailslotW
SetCurrentDirectoryA
SetFilePointer
CreateFileMappingW
Heap32Next
GetExitCodeProcess
GetStringTypeW
GetModuleHandleW
GetVersion
SetEnvironmentVariableA

mstscax

DllCanUnloadNow
DllUnregisterServer
DllRegisterServer
DllGetTscCtlVer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 500KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ