b72667a90d8420f4a315e623dacfb3b6af66b4418433e4bc29b507ef07f80d85 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b72667a90d8420f4a315e623dacfb3b6af66b4418433e4bc29b507ef07f80d85
Size

306KB
MD5

a1b9334c541f689852c103652a572fdf
SHA1

6262c6e71586ad7f01d2db7ee89ccf002e068255
SHA256

b72667a90d8420f4a315e623dacfb3b6af66b4418433e4bc29b507ef07f80d85
SHA512

a23cbb65a313ddf6cfb752c393b2e90e8010251bbb08489c9a9f843680880a2ea30df17322a48016c05ba6df701a6a2a1f674543c488d4c78b99a6a1a3046d34
SSDEEP

6144:FH4hlF5wuH8+EmI8jsogdT69Hv5fyb5icI4gzkvHNAG:FH4F5wCv1fsoLNMtiggzkvL

Score

N/A

Malware Config

Signatures

Files

b72667a90d8420f4a315e623dacfb3b6af66b4418433e4bc29b507ef07f80d85
.exe windows x86

da8367210d83bc20bad06209a116e193

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FatalExit
SetCurrentDirectoryA
InitializeCriticalSection
CreateFileMappingW
GetStringTypeW
VirtualAlloc
DeleteFileA
GetShortPathNameW
GetStringTypeW
DeleteFileA
DeleteFileA
LoadLibraryA
CreatePipe
GetConsoleAliasA
GetModuleHandleW
CreateMailslotA
WriteConsoleW
CreateSemaphoreW
DeviceIoControl
SetEnvironmentVariableA
GetACP
GetProcessHeap
SetVolumeLabelW

mshtml

DllEnumClassObjects
ShowHTMLDialog
ShowModelessHTMLDialog
ShowModalDialog

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE