e76bf120b36a3b4d74abea753285bc593d85978126988a95b14269dc382cd61b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e76bf120b36a3b4d74abea753285bc593d85978126988a95b14269dc382cd61b
Size

822KB
MD5

d195a40011b6db1bb987c22e9bfb1034
SHA1

9d59510468c5ecc4adbd30efb1d2dc3f1b312d23
SHA256

e76bf120b36a3b4d74abea753285bc593d85978126988a95b14269dc382cd61b
SHA512

827664e4e4738de6c94514783788e0dcd3155739b321a9624f11a60c1aa2ddfb35da15c4a5c6abd9624d6b6d81a1d1a04060487a5132011f846e46ef7f0ed663
SSDEEP

24576:glMihNPdsp2bKtaERkN/YiHjCgGH+4Rms:+MIfs8Wnkmi+gG

Score

N/A

Malware Config

Signatures

Files

e76bf120b36a3b4d74abea753285bc593d85978126988a95b14269dc382cd61b
.exe windows x86

1459e3eed1447bc1f54e9342a8f1b37d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetSystemTime
WriteFile
GetModuleHandleA
GetEnvironmentVariableW
GetDiskFreeSpaceW
lstrcatA
GetProcessHeap
CreateMailslotW
GetPrivateProfileIntW
CompareStringW
GetTimeFormatA
lstrcmpW
GetCurrentDirectoryA
VirtualFree
ReadConsoleW
GetLastError
VirtualProtectEx
GetVolumeInformationA
GetFileType

dmdskmgr

DllRegisterServer
?namecmp@@YGHPBG0@Z
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 20KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 798KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ