1b138219fcaf2685694b8dfe36d95887dca7fb63d946a8a15eaa0d974e1fa32b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b138219fcaf2685694b8dfe36d95887dca7fb63d946a8a15eaa0d974e1fa32b
Size

300KB
MD5

f7510c34b1612679c9a2f8ad332a9a1f
SHA1

8e7fff17b664c9fa5ec61a6ecfbcbf4cd0f44a13
SHA256

1b138219fcaf2685694b8dfe36d95887dca7fb63d946a8a15eaa0d974e1fa32b
SHA512

2d49775fbfbe854625d7d65eb259cfdecc18fa6a8157f002ebc80d7dbfb5cc165853d910dac91e02757b63a8000b2cc80425a9e2d04eac198f5da1e0352b8494
SSDEEP

6144:EN0zwdF14EVJ2KFa6O/itqbCNyUrGWqIZGVs01nTkHHVYsC16MZ:EizoF+UcK1Qdj7jIZMOnVYM

Score

N/A

Malware Config

Signatures

Files

1b138219fcaf2685694b8dfe36d95887dca7fb63d946a8a15eaa0d974e1fa32b
.exe windows x86

c789fad1b3617c02c1731680ab14ed84

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
lstrcmpiA
HeapCreate
GetPrivateProfileStringA
IsValidCodePage
EndUpdateResourceA
GetDriveTypeA
GetLastError
TlsFree
GetTickCount
SetLastError
ReadFile
GetStdHandle
lstrcatW
GetLogicalDrives
GetModuleHandleA
GetConsoleTitleW
GetLocalTime
FileTimeToLocalFileTime
GetBinaryTypeA
CreateNamedPipeA
CreateWaitableTimerA
SetStdHandle

netshell

HrLaunchConnectionEx
NcFreeNetconProperties
DllGetClassObject
HrGetIconFromMediaType

Sections

.text
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 1024B - Virtual size: 513B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ