9979f6c4be8617060dec60ed326c87c057f3d374bd3fd8ac7c8946e82023004b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9979f6c4be8617060dec60ed326c87c057f3d374bd3fd8ac7c8946e82023004b
Size

818KB
MD5

8251334f9e366fe021f0078536a210ed
SHA1

1e0dd6f1db5a4a160e0a50e2e7b891eadb9736ba
SHA256

9979f6c4be8617060dec60ed326c87c057f3d374bd3fd8ac7c8946e82023004b
SHA512

a9cf1f1fa666da7f136b458010c66b8c80e76c32f60d0c96da6abcfd7ff26c9ee026fada70104eea638c23a2bdaebcebdc4af5da158812696c719d788b089278
SSDEEP

24576:6mvMcMk7nEQ2KbqCSvrkjfU5Y/6aOqbsozi9xB:zvxMGVMrqmkNOuzi

Score

N/A

Malware Config

Signatures

Files

9979f6c4be8617060dec60ed326c87c057f3d374bd3fd8ac7c8946e82023004b
.exe windows x86

9200c7e650a8e910c9a27f7b708574a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpynA
lstrcpynA
FormatMessageW
lstrcpynA
GetDiskFreeSpaceW
GetFileType
lstrcpynA
DeleteFileW
lstrcpynA
OpenMutexW
lstrcatA
GetDriveTypeA
GetCurrentThreadId
lstrcpynA
GetVolumeInformationA
GetModuleHandleA
lstrcpynA
GetCurrentDirectoryA
lstrcpynA
GetSystemTime
VirtualProtectEx
SetThreadPriority
GetPrivateProfileIntA
ReadConsoleA
lstrcpynA
lstrcmpA
VirtualFree
ReadFile
lstrcpynA

certmgr

DllCanUnloadNow
DllGetClassObject
DllUnregisterServer
DllRegisterServer

Sections

.text
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ