490e0e230b31af9ae7a21d42dc33cdc56c1a4d1238c4775d1d9b158451b9d92c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

490e0e230b31af9ae7a21d42dc33cdc56c1a4d1238c4775d1d9b158451b9d92c
Size

831KB
MD5

57518eb46579629b3f054750047068d9
SHA1

8864dead2097b0cc832a74c4d79e1676df07bd88
SHA256

490e0e230b31af9ae7a21d42dc33cdc56c1a4d1238c4775d1d9b158451b9d92c
SHA512

e013dbb91658fa014371d09624db2c1599aad53a23820ba8de8618d566c4f34a9fe78a034ad19533a39ec8fa700179f1f5a14aaaa1fd6b00641a29a2d3110214
SSDEEP

12288:rlOuNO0MR2Z6CQr5rKbeRRp8DtmNm9Vh54fdHYTD1cPTfRlnsB1OnYFiC1A:JOD0Mo0AblZAWh54hED6JlsB1Onh1

Score

N/A

Malware Config

Signatures

Files

490e0e230b31af9ae7a21d42dc33cdc56c1a4d1238c4775d1d9b158451b9d92c
.exe windows x86

8b93cbd85c748e253247d69a583d40f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeInformationA
ReadConsoleW
CopyFileA
CopyFileA
CreateFileMappingW
HeapAlloc
GetTimeFormatA
WriteConsoleA
GetPrivateProfileStringA
VirtualAlloc
CompareStringW
GetFileAttributesA
CreateDirectoryA
GetDriveTypeA
GetEnvironmentVariableA
FreeEnvironmentStringsW
LoadLibraryA

msdtcuiu

DtcPerfCollect
PerfDllRegisterServer
DtcPerfClose
DtcPerfOpen

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 716B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.odata
Size: 812KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE