fdaf98f95b4cb7c343b553a84c6c9c95af34146601b2b626fbe2e436a505f91c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fdaf98f95b4cb7c343b553a84c6c9c95af34146601b2b626fbe2e436a505f91c
Size

28KB
MD5

df4485dd0c4ab206af301c6249352006
SHA1

b80c233818460405fbe8f411243d64e15e90fabd
SHA256

fdaf98f95b4cb7c343b553a84c6c9c95af34146601b2b626fbe2e436a505f91c
SHA512

b8eacc7a676ad2cd4aa044665d87bef3a5c5ff10bca793c5bafa4888b2db782d6757b909e787000d9173df37873233892ca39db01efb13539fe774dca6e52186
SSDEEP

384:EjHZ0hJEBwEHnI/N0gynjp7mKIGjIMdIa65eH6q87y3jGsnEkUQS/sIPv3DKW:k50hmB7HIlunjdLH6GCy3yOUUInD

Score

N/A

Malware Config

Signatures

Files

fdaf98f95b4cb7c343b553a84c6c9c95af34146601b2b626fbe2e436a505f91c
.exe windows x86

8b4cc2be0324264fac1338e1727600aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
CreateFileA
DeleteFileA
lstrcpyA
lstrlenA
GetTempFileNameA
GetTempPathA
GlobalAlloc
ExitProcess
GetCommandLineA
GetModuleHandleA

shell32

ShellExecuteA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ