af0c2173a3a2f8c763e1ac4a13df75934b67f6fb58ee27981c94b5bb20fc4263 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af0c2173a3a2f8c763e1ac4a13df75934b67f6fb58ee27981c94b5bb20fc4263
Size

811KB
MD5

90ceec9796ef95387e186b349899527a
SHA1

e7cae50a8c9fa6727844cee881608e1497da5a6f
SHA256

af0c2173a3a2f8c763e1ac4a13df75934b67f6fb58ee27981c94b5bb20fc4263
SHA512

39e07b56d3bd4973707a14ad9cb7b11fa175a1ab4349956002889ce73ff6844b0111a90340d2d439666a9525888f5bededd88e0542ac2fb7bd1790412ad3aae0
SSDEEP

24576:2vemGLS7xlzP6mHEI/j7TnjD/7ZZO3DsbEwGaHVM:oemG+VhfHJr7TjDTz8DsLL1M

Score

N/A

Malware Config

Signatures

Files

af0c2173a3a2f8c763e1ac4a13df75934b67f6fb58ee27981c94b5bb20fc4263
.exe windows x86

4832945ebc5a0c3ef7dbe594c377d603

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetVersion
SetEndOfFile
GetFileAttributesA
SetEndOfFile
SetEndOfFile
GetStdHandle
SetEndOfFile
LoadLibraryA
GetStringTypeW
lstrcpyW
CreateEventA
SetCurrentDirectoryW
VirtualProtectEx
OpenMutexW
GetLogicalDriveStringsW
SetEndOfFile

vbscript

DllCanUnloadNow
DllRegisterServer
DllGetClassObject
DllUnregisterServer

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.data
Size: 802KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE