641223400aad5336773ffa4b786b9b4236f799c5edcbf9b34d56404db5e93579 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

641223400aad5336773ffa4b786b9b4236f799c5edcbf9b34d56404db5e93579
Size

819KB
MD5

20f1a5bd195cf1fc35b78f7b5ce648f5
SHA1

205e610d29948a28469f6941ba55cefebbcb2286
SHA256

641223400aad5336773ffa4b786b9b4236f799c5edcbf9b34d56404db5e93579
SHA512

ff34ddffebf904fc77283103296838c7a8ab84558c115b7d2691bdbeefe416b8ae7fb3b8937b40077ebd9c14c90a2c33b836921fd4ca565e2946de11ddc58713
SSDEEP

12288:Fj0PeTCuF/eNYK2K7pUsRsva8FDemirRP/MCVj+p7CWvh7IFRXqGoP2PxRpad6B:FmjNYKZUOsvhFerRPUChKh0D8GCC0

Score

N/A

Malware Config

Signatures

Files

641223400aad5336773ffa4b786b9b4236f799c5edcbf9b34d56404db5e93579
.exe windows x86

5ae62f4fb903a837f1bfc5e42c28c14b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
lstrcpynA
VirtualFree
lstrcatA
GetDiskFreeSpaceW
GetPrivateProfileIntA
Heap32Next
lstrcpynA
FindFirstVolumeW
GetVolumeInformationA
ReadConsoleA
OpenMutexW
lstrcpynA
VirtualProtect
lstrcpynA
lstrcpynA
GetDriveTypeW
WriteFile
GetSystemTime
GetCurrentThreadId
lstrcpynA
GetFileType
SetThreadPriority
lstrcpynA
lstrcmpW
GetCurrentDirectoryA
lstrcpynA
lstrcpynA
lstrcpynA

d3d8

Direct3DCreate8
DebugSetMute
ValidateVertexShader
ValidatePixelShader

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ