fa4144885985f2598b4af9d21c89b01cb57b250ec6449e68cf2d8d13fb6fb2fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa4144885985f2598b4af9d21c89b01cb57b250ec6449e68cf2d8d13fb6fb2fc
Size

818KB
MD5

cfe530ce3e185b56f9e66d09d9fbecda
SHA1

bbf3c596ba03dde5bb4cca705b1098031f9746be
SHA256

fa4144885985f2598b4af9d21c89b01cb57b250ec6449e68cf2d8d13fb6fb2fc
SHA512

55d09fe3f89264cf37c421ebcac53468386b7847e65180348bb121b68f10d9446fa5502ab0d94f65614c185c3bb27aee42e05de02c201ad728a0e116866617c4
SSDEEP

12288:GHifihnpsOYBjyzlmLQ+9nI0ghKIfDVO/4XKL3Mi73TC2mGJHGOS4v1:7UnpkBjyG9nI0ARpKL3pHdNS4

Score

N/A

Malware Config

Signatures

Files

fa4144885985f2598b4af9d21c89b01cb57b250ec6449e68cf2d8d13fb6fb2fc
.exe windows x86

7c66c815125e26afc6f8b7628192b92c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceW
lstrcpynA
GetCurrentThreadId
WriteFile
VirtualFree
lstrcpynA
GetModuleHandleA
GetSystemTime
lstrcpynA
GetPrivateProfileIntA
lstrcpynA
OpenMutexW
GetFileType
GetDriveTypeA
GetVolumeInformationA
lstrcpynA
GetCurrentDirectoryA
lstrcatA
lstrcpynA
lstrcmpW
VirtualProtectEx
lstrcpynA
Heap32First
ReadConsoleA
SetThreadPriority
FindFirstVolumeA
lstrcpynA
lstrcpynA
lstrcpynA

cmdial32

InetDialHandler
AutoDialFunc
RasCustomDial
RasCustomDialDlg

Sections

.text
Size: 18KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ