af5d2211aa89e25306199a51bf0da3e8b776498a94850649b1b627f68f3e48b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af5d2211aa89e25306199a51bf0da3e8b776498a94850649b1b627f68f3e48b0
Size

66KB
MD5

2d5d7678b2a321118b8ef0085bb1cd55
SHA1

27dccb8afa9346ec2ffb95679b5ea7210ad3c6fe
SHA256

af5d2211aa89e25306199a51bf0da3e8b776498a94850649b1b627f68f3e48b0
SHA512

6d035f86df610720c49ec7b3725077b52382d27058de87267619c1bd9f95a392e7b42aae7be2a7bc73e87b877fd7258d73624ba96041ec0cfdf75c2a03ad35eb
SSDEEP

1536:xUSZHRyllNuKUHpAfrx0/uJsAksuShpVlIrFAoTjjx:xUSWllNuNfGtrFpVl2xL

Score

N/A

Malware Config

Signatures

Files

af5d2211aa89e25306199a51bf0da3e8b776498a94850649b1b627f68f3e48b0
.exe windows x86

085cca81c6c1920420e492f637a2e46a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
SetEndOfFile
GetACP
GetStringTypeW
CreateFileMappingW
DeleteFileA
VirtualAlloc
SetCurrentDirectoryA
GetConsoleAliasA
WriteConsoleW
Heap32Next
GetShortPathNameW
CreateMailslotA
SetFilePointer
GetConsoleTitleA
DeleteFileA
SetEnvironmentVariableA
DeleteFileA
GetModuleHandleW
SetVolumeLabelW
GetProcessHeap
Heap32First
LoadLibraryA

msoeacct

DllCanUnloadNow
GetDllMajorVersion
ValidEmailAddress
DllGetClassObject

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avr
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE