8ed9c27dc09a0f9643f0bcda31d604417fe898c78b362bcb7441c5ebf828cf86 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ed9c27dc09a0f9643f0bcda31d604417fe898c78b362bcb7441c5ebf828cf86
Size

818KB
MD5

0248482eeb6b1174572de31bb69752f7
SHA1

1c313cfbd3b83be637d2f9a4421532f3b05a2ab5
SHA256

8ed9c27dc09a0f9643f0bcda31d604417fe898c78b362bcb7441c5ebf828cf86
SHA512

b639b2189fba5c1efd9d27f0720ab9952fe4b119d9f5ee90ec5c75f2f324ac80e8c75a3a35f0978d3f81922e0aaa05fbf39354d421e9eb4bc1b7ec5bc43253ab
SSDEEP

12288:XcTvWRmO58rOw17YJGCsRxKLngxMoOMF1Gi0IqWTxrLbyQzf6qmwr+rxX4HBygYJ:UvWRm5lKxs7sGMoaIqWBHzf6OaFIBG5

Score

N/A

Malware Config

Signatures

Files

8ed9c27dc09a0f9643f0bcda31d604417fe898c78b362bcb7441c5ebf828cf86
.exe windows x86

478c15d926aa019cf3fa2cc4a19eeb5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
Heap32Next
FindFirstVolumeW
OpenMutexW
GetVolumeInformationA
lstrcpynA
lstrcatA
GetCurrentDirectoryA
GetModuleHandleA
lstrcmpW
lstrcpynA
lstrcpynA
VirtualProtect
VirtualFree
GetFileType
lstrcpynA
GetSystemTime
GetDiskFreeSpaceW
lstrcpynA
GetCurrentThreadId
lstrcpynA
ReadConsoleA
lstrcpynA
lstrcpynA
SetThreadPriority
lstrcpynA
GetPrivateProfileIntA
lstrcpynA
WriteFile

d3d8

ValidateVertexShader
DebugSetMute
Direct3DCreate8
ValidatePixelShader

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 854B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ