39f697e1698482a468a14fb6e251724641cae60721c1b912a0de5e80cc74aba2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39f697e1698482a468a14fb6e251724641cae60721c1b912a0de5e80cc74aba2
Size

818KB
MD5

e1c07b1d7339065d373dcbad4c843783
SHA1

ef49ff3adbe766e8780ce2b6dea22d74258f4818
SHA256

39f697e1698482a468a14fb6e251724641cae60721c1b912a0de5e80cc74aba2
SHA512

2ef21933478c764c89e8da2b6e69eda5ba70a0f4f7bb710b378e0eec5169b243d108100df9b8bcf96704b6b8cdc183e79e4ae0d221568afe65e2805ab959c196
SSDEEP

24576:qFyZpBUcCZj5VX72ATvsVH6dces/WMKBs2kU:OyZ9M5VjTEQs/gBs2

Score

N/A

Malware Config

Signatures

Files

39f697e1698482a468a14fb6e251724641cae60721c1b912a0de5e80cc74aba2
.exe windows x86

3ccd1888d5efe3e87eb6bd8693f24d60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstVolumeA
lstrcmpW
GetFileType
GetPrivateProfileIntA
lstrcpynA
ReadConsoleA
lstrcpynA
lstrcpynA
lstrcatA
lstrcpynA
VirtualFree
lstrcpynA
GetModuleHandleA
VirtualProtectEx
SetThreadPriority
lstrcpynA
WriteFile
GetSystemTime
GetCurrentDirectoryA
GetCurrentThreadId
GetVolumeInformationA
Heap32First
lstrcpynA
lstrcpynA
lstrcpynA
OpenMutexW
lstrcpynA
GetDiskFreeSpaceW
GetDriveTypeA

cmdial32

AutoDialFunc
RasCustomDial
RasCustomDialDlg
InetDialHandler

Sections

.text
Size: 18KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ