47f13478c8de06c45dd2fd652896788fbbb6f8ab8b0b42a9583c77bf5c13ed10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

47f13478c8de06c45dd2fd652896788fbbb6f8ab8b0b42a9583c77bf5c13ed10
Size

297KB
MD5

002220871dc05b1db8b473352ea7cfb0
SHA1

5140c4fedb992a2d2f5846cbd23ef235935562ca
SHA256

47f13478c8de06c45dd2fd652896788fbbb6f8ab8b0b42a9583c77bf5c13ed10
SHA512

3e4bf94c95fb8538d73d070ad78bd331aecc7f4409b4d9ed5016732161acc8103ce7ada57ca1355ce11904c528458df31f0eaa78a07dce79b49f15a960c8fc54
SSDEEP

6144:gSyRwCLVTvRHwJVbmLFq4hda7Gje5qsRSxVcmJVwWRNpXNt:gbGCLVTRsmL92SjcPIxVLpXNt

Score

N/A

Malware Config

Signatures

Files

47f13478c8de06c45dd2fd652896788fbbb6f8ab8b0b42a9583c77bf5c13ed10
.exe windows x86

e98d6b0e3f50fbc062ac7b6eaf7e7cca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMailslotA
GetModuleHandleA
GetStdHandle
Sleep
DeleteFileA
CreateNamedPipeA
IsValidCodePage
lstrcmpiA
GetDriveTypeW
lstrcmpiA
GetModuleFileNameA
lstrcmpiA
FileTimeToLocalFileTime
WaitForSingleObject
SetLastError
HeapCreate
GetProcessHeap
GetVolumePathNameA
lstrcmpiA
SuspendThread
GetLogicalDriveStringsA
lstrcmpiA
lstrlenA

rasdlg

RouterEntryDlgA
RasEntryDlgA
DwTerminalDlg
RasDialDlgA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 288KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ