0b20aef96578fc3c80085be090e0dc1467e89fc85a2049f545af9330318ba359 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b20aef96578fc3c80085be090e0dc1467e89fc85a2049f545af9330318ba359
Size

819KB
MD5

9da0f563518381b975b63730352edd2e
SHA1

679ec56009148d12aa03ae29a4bd9c2863162e07
SHA256

0b20aef96578fc3c80085be090e0dc1467e89fc85a2049f545af9330318ba359
SHA512

19e7865ae69cc473816ddb55fa3f0b60cf99f29c95a9cb61c485d9729d5e413b9734f31b92f241f2e41f1b688ab7d4704ae5fff576f1fbf03d041d167ebd0d87
SSDEEP

12288:qU8DtUEls+KqiULDpHXW7I5ySj9YVIG0wNDzKgQHnYVmni/bLo3eYrlaEqgieC2u:qptn6+KclqwoTPNDzKgpaiTk35aFgpu

Score

N/A

Malware Config

Signatures

Files

0b20aef96578fc3c80085be090e0dc1467e89fc85a2049f545af9330318ba359
.exe windows x86

fb246e0c51d7abfbd81168acd679161a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentDirectoryA
GetSystemTime
lstrcpynA
FormatMessageW
lstrcpynA
lstrcatA
lstrcpynA
ReadConsoleA
OpenMutexW
GetVolumeInformationA
GetCurrentThreadId
lstrcmpA
GetPrivateProfileIntA
lstrcpynA
VirtualFree
GetDiskFreeSpaceW
lstrcpynA
VirtualProtectEx
SetThreadPriority
GetDriveTypeA
GetModuleHandleA
lstrcpynA
GetFileType
lstrcpynA
Heap32First
lstrcpynA
lstrcpynA
ReadFile
lstrcpynA

cmdial32

AutoDialFunc
InetDialHandler
RasCustomDialDlg
RasCustomDial

Sections

.text
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ