5857b9bfbd1392dd1d578e8a18858b298f39a740373cd4fefbf49d799d0a9bdf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5857b9bfbd1392dd1d578e8a18858b298f39a740373cd4fefbf49d799d0a9bdf
Size

64KB
MD5

53250fd0bf20832740b93ced75ddef40
SHA1

c015825de73b26756da9fd140bb3e9cd3a35432c
SHA256

5857b9bfbd1392dd1d578e8a18858b298f39a740373cd4fefbf49d799d0a9bdf
SHA512

63b9e930ae5d25488b107138ec6dbb009687d822a90964a3409a38ba6b149a0c8e544d6e442011109dde98fae77941635438d057f2492166c9dc9b1442246716
SSDEEP

768:kZGyIjQ4E5uCPriYLcD4edx5ZYMnKQZm8KxYeRjBqndq2/3MAcdafAJxwao:kyQ4wuSWYLcD/ZyOmYeRj4r3pf1a

Score

N/A

Malware Config

Signatures

Files

5857b9bfbd1392dd1d578e8a18858b298f39a740373cd4fefbf49d799d0a9bdf
.exe windows x86

181eb87bdee1d16955d8ed55e5651420

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
CreateFileMappingA
CreatePipe
GetCurrentDirectoryW
SetEnvironmentVariableA
GetModuleHandleA
CopyFileA
GetFullPathNameW
FindClose
VirtualFree
GetStringTypeA
HeapCreate
Sleep
FindClose
GetFullPathNameW
GetShortPathNameA
CreateMailslotA
SetVolumeLabelA
CreateFileA
WriteConsoleA
CreateEventA
FindClose
CreateSemaphoreA

mshtml

DllGetClassObject
PrintHTML
DllCanUnloadNow
ShowModalDialog

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ