76705fecdb80094bba8f02c7c3558c9f69cbb8854b43da7a6f8e4a083c2780bb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76705fecdb80094bba8f02c7c3558c9f69cbb8854b43da7a6f8e4a083c2780bb
Size

827KB
MD5

d1e395721149818b49b88a48eceec296
SHA1

763ab25b2dd8b382df8f9739a39a8b5f8e44cf4c
SHA256

76705fecdb80094bba8f02c7c3558c9f69cbb8854b43da7a6f8e4a083c2780bb
SHA512

d2fc16996481d3c08b1ce40140363465b159c0002a9b988c9a0e4f6ef478a41248fbcb97c30662414cf3adaca3159e1ef99b0e70b4c9a6564384670cd2bf4e48
SSDEEP

24576:DGH9ZjUXPLaw6NUJg9wGuNB2ZsKgHFhtq:DqZ3NUsujHtq

Score

N/A

Malware Config

Signatures

Files

76705fecdb80094bba8f02c7c3558c9f69cbb8854b43da7a6f8e4a083c2780bb
.exe windows x86

3e75ecc48ae30e637a9f5db77bda746d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
CreateMailslotW
GetVolumeInformationA
GetDiskFreeSpaceW
GetLastError
VirtualProtect
HeapFree
lstrcmpW
GetProcessHeap
GetEnvironmentVariableW
GetPrivateProfileIntW
GetStringTypeA
CompareStringW
ReadConsoleW
lstrcatA
GetShortPathNameA
GetTimeFormatA
WriteFile
GetCurrentDirectoryA

dsdmo

DllRegisterServer
DllCanUnloadNow
DllGetClassObject
DllUnregisterServer

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 1024B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 804KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ