8828f8b12281522af1f9aaa0f452a1fad54e8e2441755b25aa1a6366c349b961 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8828f8b12281522af1f9aaa0f452a1fad54e8e2441755b25aa1a6366c349b961
Size

28KB
MD5

8ba2df90b9d9cb22f8e69745ce61960b
SHA1

6790adf7988391258c1b678e38e28142b66a0b7c
SHA256

8828f8b12281522af1f9aaa0f452a1fad54e8e2441755b25aa1a6366c349b961
SHA512

6ca639cb3dea524ba74ec06d26aeaf91601677fa0c6b2b2a9cfbff96be444305a598d8e8cb0ebf9481e744192d961423f13409a5437b50b81d40913777812461
SSDEEP

384:SPfhQRcGcExvEET2dJO9K3go0j4vwl4Ejo/vqj4uEFW:QhQRck5f2dc9K3d0j4U4/x7

Score

N/A

Malware Config

Signatures

Files

8828f8b12281522af1f9aaa0f452a1fad54e8e2441755b25aa1a6366c349b961
.exe windows x86

5dd6afff6fc75d68355661fe0b98a5be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FtpGetFileSize
FtpRemoveDirectoryW
CreateUrlCacheGroup
CommitUrlCacheEntryA
DeleteUrlCacheGroup

shell32

DoEnvironmentSubstW
DuplicateIcon
RealShellExecuteW
Options_RunDLLW
Control_RunDLLA
SHFileOperationA

Sections

.text
Size: 14KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE