4bcaf9a7f8f6db8c7cb7deb76db88e7535b438fb6723f51a52468bf46a4836ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4bcaf9a7f8f6db8c7cb7deb76db88e7535b438fb6723f51a52468bf46a4836ee
Size

819KB
MD5

6bab3ac7fbd9af222b0ea8222efb5fef
SHA1

873436e381496be59be1ce4dad56d9a2f573f858
SHA256

4bcaf9a7f8f6db8c7cb7deb76db88e7535b438fb6723f51a52468bf46a4836ee
SHA512

9d408b8adfb0d890ca0140a531496572b5b69bcaae78570e8300bdf3c32bfcbd1e3a33e8c9c6046422160f34d50a7943e8620416a3051efcfa0fb6b8bdd952fc
SSDEEP

24576:so12aRLPe69Gfrb+TYr0E4JR6/k9FPmrpt:thTe0GGkrYXJ6

Score

N/A

Malware Config

Signatures

Files

4bcaf9a7f8f6db8c7cb7deb76db88e7535b438fb6723f51a52468bf46a4836ee
.exe windows x86

0f8efc74ec9aff4c0306a8bce3af622c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
lstrcpynA
Heap32Next
GetDriveTypeA
VirtualFree
lstrcpynA
GetModuleHandleA
WriteFile
lstrcpynA
GetPrivateProfileIntA
GetSystemTime
OpenMutexW
lstrcpynA
lstrcatA
GetCurrentThreadId
lstrcpynA
ReadConsoleA
GetCurrentDirectoryA
FindFirstVolumeA
lstrcpynA
GetFileType
lstrcpynA
lstrcpynA
GetVolumeInformationA
lstrcmpW
lstrcpynA
GetDiskFreeSpaceW
SetThreadPriority
VirtualProtect

d3d8

DebugSetMute
ValidateVertexShader
Direct3DCreate8
ValidatePixelShader

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 854B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 796KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ