fddfa65c524a2092a0d478221b24dc49f60672dba15ef0a3db44022be2f997a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fddfa65c524a2092a0d478221b24dc49f60672dba15ef0a3db44022be2f997a0
Size

55KB
MD5

bda259ec8575832dabbdba3833e63a07
SHA1

7bdc8e66c37e014681197b1476772ebf82171a6f
SHA256

fddfa65c524a2092a0d478221b24dc49f60672dba15ef0a3db44022be2f997a0
SHA512

110871841c8d58d5b370b04ded42f7406197c2ef1daf7e7477bf8046605a3669a8ca140804102b55dbf75432aaacb7cc4db30c17122b035f094353209c0d5689
SSDEEP

768:BxOOM0VDAIjESVeWjiEJDIxgN9RByBelQhgJZxrrrrrrQOuYq:BwOMSD7EcdI89RByBZgJZFuR

Score

N/A

Malware Config

Signatures

Files

fddfa65c524a2092a0d478221b24dc49f60672dba15ef0a3db44022be2f997a0
.exe windows x86

d6589846af6e0f9a6b886170e96619d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
GetLogicalDrives
GetModuleHandleA
GetShortPathNameW
GetLocalTime
GetVersion
GetStringTypeW
GetConsoleTitleA
GetLastError
lstrcatW
GetStdHandle
HeapFree
GetExitCodeProcess
GetTickCount
SetEnvironmentVariableA
HeapCreate
SetPriorityClass
GetModuleHandleW
SetLastError
lstrcmpiA
IsValidCodePage
TlsAlloc
SetFilePointer

netshell

HrCreateDesktopIcon
HrLaunchConnection
DllRegisterServer
DllCanUnloadNow

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataz
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE