258a2fb7818dfc5dbd6179426260693eb5cf7e951812d68592a8d49de1ccb01a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

258a2fb7818dfc5dbd6179426260693eb5cf7e951812d68592a8d49de1ccb01a
Size

301KB
MD5

c0795068c9e2f8721d075f14f739ab22
SHA1

8c62f4a656f5ae415024a11ed9cad8d2742c2d87
SHA256

258a2fb7818dfc5dbd6179426260693eb5cf7e951812d68592a8d49de1ccb01a
SHA512

70244cc1815eb42f64fd81b0b8bc8deeb6a68b0a9794d3efe2689c8b099e21ee8ae111dd6b35aa4002fecc77a941d0df5d7e99f1fcde1ae18f9a684558fc016f
SSDEEP

6144:shVPoddsGrx7R//4sUYnmWV61e4N18gHsvluSvSxB8lWBAS6sRsLwL:shxgdsGBRYs4E61e4jMvEA56P6sZ

Score

N/A

Malware Config

Signatures

Files

258a2fb7818dfc5dbd6179426260693eb5cf7e951812d68592a8d49de1ccb01a
.exe windows x86

df48f1392a3b31025d1a44f1d20cb03a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
GetTickCount
GetLocalTime
EndUpdateResourceA
HeapCreate
CreateWaitableTimerW
TlsFree
lstrcatW
GetBinaryTypeA
lstrcmpiA
GetLogicalDrives
IsValidCodePage
GetExitCodeProcess
lstrcmpiA
GetDriveTypeA
CreateNamedPipeA
GetModuleHandleA
lstrcmpiA
lstrcmpiA
SetLastError
GetPrivateProfileStringA
lstrcmpiA
GetStdHandle

netshell

HrGetIconFromMediaType
HrLaunchConnectionEx
NcFreeNetconProperties
DllGetClassObject

Sections

.text
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 294KB - Virtual size: 294KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 560B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ