da77e1ee2d792a2648ad6402a96daca05db68bf8096c9e866c8894f1cbc5c492 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da77e1ee2d792a2648ad6402a96daca05db68bf8096c9e866c8894f1cbc5c492
Size

818KB
MD5

e8bd70c36e9bd8ce9e99fef8898fd324
SHA1

8d83b01f0d970cde1d08d51259db88b4160d3eb4
SHA256

da77e1ee2d792a2648ad6402a96daca05db68bf8096c9e866c8894f1cbc5c492
SHA512

e683758562b5559de7cd9410d7e09b03f304b90c46cb9a737f7a97b089e881b0f4a28e033741622e46a056ee4ae14f16be228772d477d45f064c3134b0106b6b
SSDEEP

12288:c+MvbQMVDPNdh2mT3xYlsG3itPsyi3F7TLKVfpaILRXaCAuq39f/TDXNXc:hobhPNdpisCEG3FXGVfLaC8nTDRc

Score

N/A

Malware Config

Signatures

Files

da77e1ee2d792a2648ad6402a96daca05db68bf8096c9e866c8894f1cbc5c492
.exe windows x86

0821dbf9c4367b3f00e3f55a6398886a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
GetDriveTypeW
lstrcpynA
Heap32Next
GetDiskFreeSpaceW
OpenMutexW
lstrcpynA
lstrcpynA
lstrcpynA
lstrcpynA
GetPrivateProfileIntA
GetModuleHandleA
SetThreadPriority
WriteFile
GetFileType
GetCurrentThreadId
GetSystemTime
VirtualFree
lstrcpynA
FindFirstVolumeW
lstrcatA
lstrcmpW
VirtualProtect
lstrcpynA
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
ReadConsoleA
GetVolumeInformationA

d3d8

ValidatePixelShader
DebugSetMute
ValidateVertexShader
Direct3DCreate8

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 854B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ