fb78eef1cd06b64b7937baa241fd62a0d82059856d3e8adf19911a27310f52d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb78eef1cd06b64b7937baa241fd62a0d82059856d3e8adf19911a27310f52d2
Size

305KB
MD5

1815cb095942de7a22c62945d08b014f
SHA1

57d509b30b44962598af7f6734d6732d864b76d8
SHA256

fb78eef1cd06b64b7937baa241fd62a0d82059856d3e8adf19911a27310f52d2
SHA512

eff378220870b58945bfe012a1e1d03e79c55407999176024cb923146999d428277fa260f028aef303fc00ffff0515220a4991230e47042bb7b3f915edc55d5b
SSDEEP

6144:mQP2lnHHnHrLrLLrLrDTaDwcdI6Mw6Cs2iJhBeaXcjtULC7nhzIZCjxVJ9q3N6fc:mQPOneI1w6B2Q6ULC7nhsYVzq0fc

Score

N/A

Malware Config

Signatures

Files

fb78eef1cd06b64b7937baa241fd62a0d82059856d3e8adf19911a27310f52d2
.exe windows x86

b30dd04be242970ad2f477785a64afb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleW
DeleteFileA
GetProcessHeap
SetVolumeLabelW
GetConsoleAliasA
FatalExit
DeleteFileA
CreateMailslotA
CreateSemaphoreW
InitializeCriticalSection
GetStringTypeA
VirtualAlloc
GetACP
DeleteFileA
GetStringTypeW
LoadLibraryA
GetModuleHandleW
GetShortPathNameW
CreatePipe
SetCurrentDirectoryA
DeviceIoControl
CreateFileMappingW
SetEnvironmentVariableA

mshtml

DllEnumClassObjects
ShowHTMLDialog
ShowModalDialog
ShowModelessHTMLDialog

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ