3080fae1ed7d5ae4aa9f5354af069d58c2daadeabd2a0db1f45a2913d2355600 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3080fae1ed7d5ae4aa9f5354af069d58c2daadeabd2a0db1f45a2913d2355600
Size

58KB
MD5

f4c65a022f775d4a27fd443c36466afd
SHA1

c059cadc25f0a688aba429e633974bd53b17a246
SHA256

3080fae1ed7d5ae4aa9f5354af069d58c2daadeabd2a0db1f45a2913d2355600
SHA512

47498df8d1b451caffd61e89f630a77fb46d74aee7453c161cec6b4a9ea75240185f521f021f7be85f7eff97bdb0e76ee2356c21efa51289aa69d97a1681ee85
SSDEEP

1536:cAC8h8J04f8E6+UC8QsDS1wgmwgJVoIUk5AwHa:cA+zUC8QsDDJpJVxUSAw

Score

N/A

Malware Config

Signatures

Files

3080fae1ed7d5ae4aa9f5354af069d58c2daadeabd2a0db1f45a2913d2355600
.exe windows x86

65f9ba3c95d53d986aedf4a6e0e16df2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
SetLastError
HeapCreate
GetModuleFileNameA
CreateMailslotA
Sleep
GetVolumePathNameA
lstrcmpiA
GetModuleHandleA
lstrcmpiA
lstrcmpiA
CreateNamedPipeA
lstrcmpiA
IsValidLocale
WaitForSingleObject
FileTimeToLocalFileTime
lstrcmpiA
lstrlenA
SuspendThread
GetDriveTypeW
GetLogicalDriveStringsA
DeleteFileA
GetStdHandle

riched20

CreateTextServices
RichEditANSIWndProc
IID_IRichEditOle
IID_ITextHost

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.srt
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ