f1210046a2246875e6d0810a161b473eb1994025d4450133a4aba04385099fa7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1210046a2246875e6d0810a161b473eb1994025d4450133a4aba04385099fa7
Size

819KB
MD5

a8bd9400a2a4f8f343b357ecef3cba00
SHA1

a3ddbd164a209bd0067cefcaf07d339e6cca53a9
SHA256

f1210046a2246875e6d0810a161b473eb1994025d4450133a4aba04385099fa7
SHA512

508ef858c9dc0dc6da2caff7628375c51add783389b3763232b68f8d43347dadcd909e4f403f03e0568dc009c9b9c26416a35bfa1bad702325786d3b71a8611d
SSDEEP

24576:TGguG+rJFrDnLTLurBHYnDjQrVCpeo7T7sMorG:TDt+rHrPTLw2nwrSeDxy

Score

N/A

Malware Config

Signatures

Files

f1210046a2246875e6d0810a161b473eb1994025d4450133a4aba04385099fa7
.exe windows x86

e3e6d42fdfe0c93373747f382df02e30

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstVolumeA
GetPrivateProfileIntA
GetDiskFreeSpaceW
GetModuleHandleA
lstrcpynA
lstrcpynA
GetSystemTime
lstrcpynA
lstrcpynA
lstrcatA
lstrcpynA
lstrcmpW
Heap32Next
GetFileType
lstrcpynA
SetThreadPriority
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
GetDriveTypeA
VirtualFree
ReadConsoleA
GetVolumeInformationA
VirtualProtect
lstrcpynA
OpenMutexW
GetCurrentThreadId
WriteFile
lstrcpynA

d3d8

DebugSetMute
ValidatePixelShader
ValidateVertexShader
Direct3DCreate8

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 854B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 796KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ