1b689ad43538be13abd9b75d3e02ec33456280b336da36bebc93b7e3b6ac27d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b689ad43538be13abd9b75d3e02ec33456280b336da36bebc93b7e3b6ac27d3
Size

820KB
MD5

0025c18110997935e207e00679e020ef
SHA1

1e655f4941c5d2139895a7197c5fd87c6c2f594a
SHA256

1b689ad43538be13abd9b75d3e02ec33456280b336da36bebc93b7e3b6ac27d3
SHA512

68e96599cc6574954f752f0236563c92d64ac5c0549bb2127e02748a9e26ac0179bacfba623a416525d920578c10380aa5ecbcb62924568e58968987ac051ef0
SSDEEP

24576:UbSIkKdsFTogGRBloAbh/XwmT80dYjGl0/TI:qkjFTobloG978xF/s

Score

N/A

Malware Config

Signatures

Files

1b689ad43538be13abd9b75d3e02ec33456280b336da36bebc93b7e3b6ac27d3
.exe windows x86

cc574606300ed2a13cf92c469b45629d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
VirtualFree
lstrcpynA
lstrcatA
lstrcpynA
GetDriveTypeW
lstrcpynA
OpenMutexW
lstrcpynA
lstrcpynA
GetFileType
GetVolumeInformationA
lstrcpynA
ReadConsoleA
lstrcmpW
VirtualProtectEx
WriteFile
lstrcpynA
GetCurrentThreadId
lstrcpynA
lstrcpynA
GetDiskFreeSpaceW
GetModuleHandleA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetSystemTime
SetThreadPriority
Heap32Next
FindFirstVolumeW

d3d8

DebugSetMute
ValidatePixelShader
ValidateVertexShader
Direct3DCreate8

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 796KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ