aa09dd6c738824dde20c6029972e8d5492fe17e0c8e9fbb5809844066ff6a6f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa09dd6c738824dde20c6029972e8d5492fe17e0c8e9fbb5809844066ff6a6f0
Size

185KB
MD5

11091f898753a2161c26375a97d440e7
SHA1

9b46227816a03c578d877c1f4e7966b529550ffd
SHA256

aa09dd6c738824dde20c6029972e8d5492fe17e0c8e9fbb5809844066ff6a6f0
SHA512

19b2c666d0ccb570b0b055061bce81999f536f93fef883b879fb3ba4e61df2b3524e4207e738f103cf4c60990c5d263dec45e860d9a6034f6f22079f8f80734e
SSDEEP

3072:+wK3xKjlgO0sh1jIfFJRiPgQzS1V0uritSUTyho7NqsE/cOggnrlJF/wGlCTxmPI:43IBgOZjIfFzMO1n+tSY1qsErggxvwIG

Score

N/A

Malware Config

Signatures

Files

aa09dd6c738824dde20c6029972e8d5492fe17e0c8e9fbb5809844066ff6a6f0
.exe windows x86

1d25021fc23f7d899b55e77fefaddc1a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpNA
StrCmpLogicalW

kernel32

GetWindowsDirectoryW

Exports

Exports

?BallHeight**YGPAXU_POINTL***Z
?DestroyTarget@@YGPAXU_POINTL@@@Z
?HeartPulse@@YGPAXU_POINTL@@@Z
?RedirectPointer@@YGPAXU_POINTL@@@Z
?SomethingUse@@YGPAXU_POINTL@@@Z

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE