ae05bbf527f30be756dc5ea7f06491dce7cc0a38ff3b2510273c1c98026f1d16 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae05bbf527f30be756dc5ea7f06491dce7cc0a38ff3b2510273c1c98026f1d16
Size

305KB
MD5

296f20647703f8be2f1356fde4aaf6e0
SHA1

da21c86260ff632daa23b06e3e9a64669e41a6ac
SHA256

ae05bbf527f30be756dc5ea7f06491dce7cc0a38ff3b2510273c1c98026f1d16
SHA512

68fa2874bd2d39854d98c614292213ad8962fb014bc569389a6bd22ce1ca0561f461d4cd3ea6efc8e8315b028e61d1b70f6ceadfbd7d75b819714ca6910970dc
SSDEEP

6144:pVcHobtMv/lzuwE13eX+fAYtNhjAE8iljrXaov23RAcKKiH+uZ6tkRNH:XcHVv/9uwE1W+xNtbFv23RApKiek

Score

N/A

Malware Config

Signatures

Files

ae05bbf527f30be756dc5ea7f06491dce7cc0a38ff3b2510273c1c98026f1d16
.exe windows x86

358c7cb2e4b061ac4116a7d0b4601bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
lstrcpynA
GetModuleHandleA
FindNextVolumeW
SetConsoleTitleW
DeleteFileW
lstrcpynA
VirtualAlloc
GetStartupInfoW
GetLocaleInfoW
GetPrivateProfileIntA
TlsGetValue
GetModuleFileNameW
lstrlenA
SetCurrentDirectoryA
GetFullPathNameA
lstrcpynA
TlsAlloc
TlsAlloc
GetCurrentProcess
GetNumberFormatA
CreateEventA
lstrcpynA

vbscript

DllGetClassObject
DllRegisterServer
DllUnregisterServer
DllCanUnloadNow

Sections

.text
Size: 11KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE