ac8b5bbc44116a817fe371b8c780ac8f4f2e018445c61759e512c8115a9feba6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac8b5bbc44116a817fe371b8c780ac8f4f2e018445c61759e512c8115a9feba6
Size

818KB
MD5

6d0e25828d441a08a97378395bf4fb02
SHA1

e9b5314d4682e93a6596a4cf2de142f13b483e7c
SHA256

ac8b5bbc44116a817fe371b8c780ac8f4f2e018445c61759e512c8115a9feba6
SHA512

ac4bb076dbff5b2512dd5eae050218c9a7f98c4612e9e8537221485266990861078fd687db2fd06d72d31d9d383ffc33e60c0a0799aad107ecc099acd687b2e8
SSDEEP

12288:nvLR89c4o/JSFAgHljv30dZAFc3Pda+fg6uqnyVPqIK42Wx+j2Poxvswbvqp:nvLRE/ohyAgFD4jfg6uqnKqAbk5Nq

Score

N/A

Malware Config

Signatures

Files

ac8b5bbc44116a817fe371b8c780ac8f4f2e018445c61759e512c8115a9feba6
.exe windows x86

66d34dc476b9cf353f2809fbb3dd750f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
VirtualFree
GetVolumeInformationA
lstrcmpW
lstrcpynA
WriteFile
lstrcpynA
ReadConsoleA
lstrcpynA
GetFileType
VirtualProtect
GetSystemTime
lstrcpynA
lstrcpynA
GetCurrentThreadId
lstrcpynA
GetModuleHandleA
lstrcpynA
GetDriveTypeA
GetPrivateProfileIntA
SetThreadPriority
FindFirstVolumeA
GetDiskFreeSpaceW
GetCurrentDirectoryA
lstrcpynA
lstrcpynA
lstrcpynA
Heap32First
OpenMutexW

comuid

DllUnregisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ