b0fe44af531b8e8de334d36d0f5c8629fab87cc1ffef6de6563fe895ac8d3ead | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0fe44af531b8e8de334d36d0f5c8629fab87cc1ffef6de6563fe895ac8d3ead
Size

58KB
MD5

968048bf9426d77236d5ea717167f7ed
SHA1

c2cea77fe9aa69f144caba422ca0c436bf1af4a6
SHA256

b0fe44af531b8e8de334d36d0f5c8629fab87cc1ffef6de6563fe895ac8d3ead
SHA512

958beb07bf6501171af033a52cdb1d824128261b17ea9be306ab94eeb03dde298275a7eb17851048e3d6cfc9d51c3d054a017949ec57bdee10a9c5ba3decb539
SSDEEP

1536:oKgWnLcC1Yd77boem5do5JUTTTwi+T5oXdBIP:oKgAQHdnce8m5JUTTTwjW

Score

N/A

Malware Config

Signatures

Files

b0fe44af531b8e8de334d36d0f5c8629fab87cc1ffef6de6563fe895ac8d3ead
.exe windows x86

ac3dbe74446b3a3fcefc7c5ab480bf47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
SetFilePointer
GetConsoleAliasW
CreateMailslotW
DeleteFileA
GetStringTypeW
GetACP
HeapFree
HeapCreate
SetCurrentDirectoryA
DeleteFileA
LoadLibraryA
GetModuleHandleW
GetExitCodeProcess
GetShortPathNameW
GetProcessHeap
SetEnvironmentVariableA
CreateFileMappingW
GetVersion
GetStringTypeW
Heap32Next
GetConsoleTitleA
WriteConsoleW

mstscax

DllUnregisterServer
DllGetTscCtlVer
DllCanUnloadNow
DllRegisterServer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ