b2166a29f9820d98addb997a3a4c4f0c731f1a00ec2293dba035a6ef7baa2f51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2166a29f9820d98addb997a3a4c4f0c731f1a00ec2293dba035a6ef7baa2f51
Size

820KB
MD5

f2d02604852537b16d6e051ddeb44769
SHA1

19d9a922056b4eeab34f7eddb8a0979d74fd078d
SHA256

b2166a29f9820d98addb997a3a4c4f0c731f1a00ec2293dba035a6ef7baa2f51
SHA512

585381faf7ed0d22d15dcb7287b447a7001737084e8eda5dbeff99356ee34d64cc56cb73da5a4e2700bae7fa65fb131629952e5ebb706c546df666ee635207b9
SSDEEP

24576:8Y6qbbjO65YJYi242PJKRcXtpxFNPlYC9:8cYJl21Bp9TzNj9

Score

N/A

Malware Config

Signatures

Files

b2166a29f9820d98addb997a3a4c4f0c731f1a00ec2293dba035a6ef7baa2f51
.exe windows x86

edde05b10f8751def34f484e1657c092

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
lstrcpynA
lstrcpynA
lstrcpynA
VirtualFree
lstrcmpW
GetVolumeInformationA
lstrcpynA
SetThreadPriority
WriteFile
lstrcpynA
GetCurrentThreadId
Heap32Next
GetPrivateProfileIntA
lstrcpynA
GetFileType
lstrcpynA
VirtualProtectEx
lstrcpynA
GetCurrentDirectoryA
lstrcpynA
GetDriveTypeW
ReadConsoleA
FindFirstVolumeW
lstrcpynA
lstrcatA
OpenMutexW
GetDiskFreeSpaceW
GetSystemTime

d3d8

DebugSetMute
Direct3DCreate8
ValidateVertexShader
ValidatePixelShader

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 796KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ