cf6e56870f2823a8a50d99ce3839bcfc11213fe4dc90a85bfccb9a0bb993c002 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf6e56870f2823a8a50d99ce3839bcfc11213fe4dc90a85bfccb9a0bb993c002
Size

818KB
MD5

69b1b88bba04222d6d676b6f7f13bd73
SHA1

375c435b8bcad6e39828bcac91aae1576a45e48d
SHA256

cf6e56870f2823a8a50d99ce3839bcfc11213fe4dc90a85bfccb9a0bb993c002
SHA512

92b4d4be60f3c0c59a48c4b1e247a4439f7554a1653910f21463a46d88e67576a91e73b8c7c0e15c7552cb179fbf16108350de9c100df88ca241bbbb9719f282
SSDEEP

12288:tSlowp7jV+9NBWjKm2HAOBixE0msSw2ypuMxVBmryS2NbdT0o43CjB240X7Pcw:toTVV+nBKL2kXmsSPWBNS2hgXj

Score

N/A

Malware Config

Signatures

Files

cf6e56870f2823a8a50d99ce3839bcfc11213fe4dc90a85bfccb9a0bb993c002
.exe windows x86

12f148a94ae8d7127e313eea617d1c84

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpynA
lstrcmpA
GetPrivateProfileIntA
lstrcpynA
GetFileType
ReadFile
SetThreadPriority
Heap32First
lstrcpynA
lstrcpynA
GetModuleHandleA
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
GetDiskFreeSpaceW
GetSystemTime
FormatMessageW
lstrcpynA
GetDriveTypeA
lstrcpynA
VirtualFree
GetCurrentThreadId
lstrcpynA
lstrcatA
GetVolumeInformationA
ReadConsoleA
VirtualProtectEx
lstrcpynA
OpenMutexW

cmdial32

RasCustomDial
AutoDialFunc
InetDialHandler
RasCustomDialDlg

Sections

.text
Size: 17KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ