6273ea8558fe34a6191162e27a368f8f6f7407b4c5fae9be6fd5dc93f923df72 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6273ea8558fe34a6191162e27a368f8f6f7407b4c5fae9be6fd5dc93f923df72
Size

820KB
MD5

6d97fa3626cc52ffb6d8d4fcd181cfc8
SHA1

e9836c89a302e9b2e5dcaa58848c82392f71e42a
SHA256

6273ea8558fe34a6191162e27a368f8f6f7407b4c5fae9be6fd5dc93f923df72
SHA512

81a5d3775de2279c833f9e6d258ace950bb18904229bc0ad8b10d2ed400440e4801d7d6081ed510788510078cb56d3a6458e62d91415bb9aaf6fabeb37e0b5f5
SSDEEP

12288:62PpFLLmXXQDrQLk9TqkTqhsxIFnq5BA9lQ/9J7qH7lgHQp9k+rh4J0Sormc+H:6CzDT+/8qtz+9wiHQp9k+rhs0SQe

Score

N/A

Malware Config

Signatures

Files

6273ea8558fe34a6191162e27a368f8f6f7407b4c5fae9be6fd5dc93f923df72
.exe windows x86

3d7a3c590af93b44fc578d8c0390c644

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
lstrcpynA
lstrcpynA
lstrcpynA
GetFileType
VirtualProtectEx
GetVolumeInformationA
GetPrivateProfileIntA
SetThreadPriority
GetCurrentDirectoryA
GetDiskFreeSpaceW
lstrcpynA
lstrcpynA
GetModuleHandleA
lstrcpynA
GetDriveTypeW
OpenMutexW
VirtualFree
Heap32Next
ReadConsoleA
WriteFile
lstrcpynA
lstrcmpW
GetCurrentThreadId
GetSystemTime
lstrcatA
lstrcpynA
lstrcpynA
FindFirstVolumeW

d3d8

ValidateVertexShader
ValidatePixelShader
Direct3DCreate8
DebugSetMute

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 796KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ