e59ce487d6dd6b1eb77503cfe995ffaf4aaeddc1efecbeb842ad5129bf2ed981 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e59ce487d6dd6b1eb77503cfe995ffaf4aaeddc1efecbeb842ad5129bf2ed981
Size

822KB
MD5

d329e6f9e20bd94be982fc41e93da014
SHA1

75f5a9c23a6b8a4ffb6e9e19713e174f4a81bcda
SHA256

e59ce487d6dd6b1eb77503cfe995ffaf4aaeddc1efecbeb842ad5129bf2ed981
SHA512

b954a1a6b0dff07501a9301e336b87fd380e05e23d1e27bd2199eaa8519200b7f6352c629f2827ff4d41a2259168b9a133844c00e1e375f48ba882353270006c
SSDEEP

24576:TCdDmLX8TmGG1EZz2wxnuSz96Jn5BNZAE:gmLIZziSAJnh

Score

N/A

Malware Config

Signatures

Files

e59ce487d6dd6b1eb77503cfe995ffaf4aaeddc1efecbeb842ad5129bf2ed981
.exe windows x86

f07684f605a10b9c5068081d8677293a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
lstrcpynA
lstrcpynA
lstrcpynA
GetLastError
Heap32Next
lstrcpynA
GetPrivateProfileIntA
lstrcatA
VirtualFree
WriteFile
GetSystemTime
lstrcmpW
FindFirstVolumeW
VirtualProtectEx
GetFileType
lstrcpynA
ReadConsoleA
GetModuleHandleA
OpenMutexW
lstrcpynA
GetCurrentProcessId
GetVolumeInformationA
lstrcpynA
lstrcpynA
lstrcpynA
GetDiskFreeSpaceW
GetCurrentDirectoryA
lstrcpynA

d3d8

Direct3DCreate8
DebugSetMute
ValidateVertexShader
ValidatePixelShader

Sections

.text
Size: 19KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 798KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ