844bb9ee0431538766bc88befd7de1ea0deb7ba9e0af1abd3e5c3796e46d28c6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

844bb9ee0431538766bc88befd7de1ea0deb7ba9e0af1abd3e5c3796e46d28c6
Size

818KB
MD5

1fae14e2eaa2366b0fafcb37724b5949
SHA1

265bbbb380f2a9cde5a6e3cbb013a915ec5c8042
SHA256

844bb9ee0431538766bc88befd7de1ea0deb7ba9e0af1abd3e5c3796e46d28c6
SHA512

3d8a2a025a14e2e239a0c4c83c3b8ac5eca8764d55d80bb99fec210b274d627ebf1d9b4229dbe024c63c145f573882a5919d26b123ac9ac1484f05f72f997f9f
SSDEEP

24576:0K4jsVcHUybnWkF1CcfaymDu+62BdROAE+FR2:0K4Q2HlWkLC8+62BdcAVm

Score

N/A

Malware Config

Signatures

Files

844bb9ee0431538766bc88befd7de1ea0deb7ba9e0af1abd3e5c3796e46d28c6
.exe windows x86

4391c64c237afc7b6fadef3bf334edac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetPrivateProfileIntA
lstrcpynA
GetDriveTypeA
lstrcpynA
GetCurrentThreadId
lstrcatA
lstrcpynA
lstrcpynA
lstrcpynA
OpenMutexW
lstrcpynA
lstrcmpW
GetSystemTime
GetDiskFreeSpaceW
FindFirstVolumeA
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
lstrcpynA
WriteFile
Heap32First
VirtualProtect
GetVolumeInformationA
GetFileType
ReadConsoleA
VirtualFree
SetThreadPriority
lstrcpynA

comuid

DllRegisterServer
DllUnregisterServer
DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ