4dae621a14681c80e81f5c2c4abc02c90492b8e87165e5c5a1abc8d4e1bb9389 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4dae621a14681c80e81f5c2c4abc02c90492b8e87165e5c5a1abc8d4e1bb9389
Size

824KB
MD5

0dfbdd3d98c233f287fa013681e7a070
SHA1

a8ae6e7a204c812793d0cb406c14526755e6ca59
SHA256

4dae621a14681c80e81f5c2c4abc02c90492b8e87165e5c5a1abc8d4e1bb9389
SHA512

78d78db7ab5fc9bd0e36e1254a5d3eb59d8e9a135ce62cb547142f1198d304b6c276782df4e695a58f1d40aae9830071fa38f5b4306b18aed143527060d9c4fc
SSDEEP

24576:ZAGC8bfPt9lzLAYhfyntmN0ojIZyUUXl5mtWg:fdbf19lwYxm6IZy7bmt

Score

N/A

Malware Config

Signatures

Files

4dae621a14681c80e81f5c2c4abc02c90492b8e87165e5c5a1abc8d4e1bb9389
.exe windows x86

cc47ecb3c0e60ad176bf01be3b0a2d8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceW
GetDiskFreeSpaceW
SetLastError
GetEnvironmentVariableW
GetCurrentDirectoryW
GetVolumeInformationA
ReadConsoleW
GetTimeFormatW
WriteConsoleA
CreateSemaphoreW
HeapCreate
lstrcatA
CompareStringW
lstrlenA
GetShortPathNameA
GetModuleHandleA
HeapFree
GetStringTypeA
GetPrivateProfileIntW

hnetcfg

HNetGetSharingServicesPage
HNetFreeSharingServicesPage
HNetDeleteRasConnection
HNetGetFirewallSettingsPage

Sections

.text
Size: 20KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 801KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ydata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE