a399dea3124b3b2e9e98bf9eda1f6f09771497ea258937fdf50c514c55d15525 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a399dea3124b3b2e9e98bf9eda1f6f09771497ea258937fdf50c514c55d15525
Size

304KB
MD5

2c66520ad408e53ade7d491609f25690
SHA1

2d71e4b177bdfa059cbd80901f3906ac543e7fd8
SHA256

a399dea3124b3b2e9e98bf9eda1f6f09771497ea258937fdf50c514c55d15525
SHA512

a04a93c5538d8acf700eabf319d71988220894c07b8a1990fbf293b2157d1c8245e2b799c50bde68da756947e3251d45db121c89aef648a98b8e1ef92cc17ca0
SSDEEP

6144:q/ejp3nb9iLd1hO4+vj6O6636wfXevJeQZFyGNpweH:0ejZU517+vzd7fXexDw

Score

N/A

Malware Config

Signatures

Files

a399dea3124b3b2e9e98bf9eda1f6f09771497ea258937fdf50c514c55d15525
.exe windows x86

6a73ca841be3efc4ca3d13700951942d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateSemaphoreW
SetVolumeLabelA
InterlockedExchange
DeviceIoControl
CreateFileMappingW
VirtualAlloc
Sleep
DeleteFileA
CreateEventW
WriteConsoleA
GetACP
GetModuleHandleW
SetCurrentDirectoryA
GetModuleHandleA
FatalExit
GetShortPathNameA
CreatePipe
DeleteFileA
DeleteFileA
SetEnvironmentVariableA
GetStringTypeW
InitializeCriticalSection
GetProcessHeap

mshtml

DllGetClassObject
ShowModalDialog
DllCanUnloadNow
PrintHTML

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrs
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ