d12c5130ab3059b2f8d690c582dd50f7f4a1ed5b469f18a64c82f2cf4f29e68b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d12c5130ab3059b2f8d690c582dd50f7f4a1ed5b469f18a64c82f2cf4f29e68b
Size

307KB
MD5

94bc442339dc8909090a87907db41be0
SHA1

461cc433b472f3e465648501dde128025c19cc6d
SHA256

d12c5130ab3059b2f8d690c582dd50f7f4a1ed5b469f18a64c82f2cf4f29e68b
SHA512

45c67f66f9fcd998ba27a80b52e1b3dd3c6fb686ce8c2da8ee966d336c02d14c904d8be3651bdfddd2b40f77328b235073501d7ef841a5f6e1423eada6ca3860
SSDEEP

6144:04r7rLrLrLrbrrrxB0pxHKQiiFQw7VYZnnvRb1MFW3QL5tjTBVnd9C3IDlCkKC10:04r7rLrLrLrbrrrxB0/qQiiCw7VYZnvB

Score

N/A

Malware Config

Signatures

Files

d12c5130ab3059b2f8d690c582dd50f7f4a1ed5b469f18a64c82f2cf4f29e68b
.exe windows x86

e707339a15df6b36e2d1229deb865094

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingW
DeleteFileA
SetCurrentDirectoryA
GetModuleHandleA
SetVolumeLabelA
GetConsoleAliasA
GetStringTypeW
VirtualAlloc
DeviceIoControl
CreatePipe
WriteConsoleW
GetACP
FatalExit
GetShortPathNameW
SetEnvironmentVariableA
InitializeCriticalSection
GetModuleHandleW
DeleteFileA
CreateMailslotA
InterlockedExchange
DeleteFileA
CreateSemaphoreW
GetProcessHeap

mshtml

DllEnumClassObjects
ShowHTMLDialog
ShowModalDialog
ShowModelessHTMLDialog

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrs
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.afdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ