04526682059b9115d7f679236e30da97b48bbd08ebafac29fe963b55becf69a2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04526682059b9115d7f679236e30da97b48bbd08ebafac29fe963b55becf69a2
Size

819KB
MD5

37a317666d21d8b9e9d30319e88d2467
SHA1

690a1b4967f148f8d7bf6cfe4f8b9ebf6868992c
SHA256

04526682059b9115d7f679236e30da97b48bbd08ebafac29fe963b55becf69a2
SHA512

b732c64a5c2f109c2dd58d4e7639564ed444898e1363f501224462136621343dbab35fe3db9bb8e819f1d779d80a08d7e8d989948a04a9e1a01bb43dece436f8
SSDEEP

24576:6Vy963mVpEVxY/Yb/4CrSYFhiZH5mLIsGWA:0y96WVDWjrSYjinTWA

Score

N/A

Malware Config

Signatures

Files

04526682059b9115d7f679236e30da97b48bbd08ebafac29fe963b55becf69a2
.exe windows x86

fe219854ad586f05fce751696fef691b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
lstrcpynA
lstrcmpW
OpenMutexW
WriteFile
GetVolumeInformationA
GetFileType
SetThreadPriority
VirtualFree
VirtualProtect
GetDiskFreeSpaceW
lstrcpynA
lstrcpynA
GetModuleHandleA
lstrcpynA
Heap32Next
lstrcpynA
GetSystemTime
lstrcpynA
lstrcpynA
GetCurrentThreadId
lstrcpynA
GetCurrentDirectoryA
GetDriveTypeA
ReadConsoleA
FindFirstVolumeA
GetPrivateProfileIntA
lstrcpynA
lstrcpynA

d3d8

DebugSetMute
ValidatePixelShader
ValidateVertexShader
Direct3DCreate8

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 854B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 796KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ