634e549396b023a92c4bcff5bbb90be586b4b6d01b2c36a4de30fe0ef683a353 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

634e549396b023a92c4bcff5bbb90be586b4b6d01b2c36a4de30fe0ef683a353
Size

819KB
MD5

b074861f4516f45c304fba1a26ed172c
SHA1

fcc7280db51cb89bc98449dd92121194b767dfe0
SHA256

634e549396b023a92c4bcff5bbb90be586b4b6d01b2c36a4de30fe0ef683a353
SHA512

f09968bcd198cf5620bdef73d42d25796ee6f49f1837976a0058d1414ad116db44b69e3a83aff89a01f8b2ec70efbfc9b4ceffdcc03b50781157acdba30e0ee8
SSDEEP

24576:pET//scp/Y/mmwGlckFiFQs+p3iIqBATF:8ccaOm5XyI/5

Score

N/A

Malware Config

Signatures

Files

634e549396b023a92c4bcff5bbb90be586b4b6d01b2c36a4de30fe0ef683a353
.exe windows x86

7d2298ec4b7aaac84329feeef8af9eaf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
lstrcpynA
lstrcpynA
FindFirstVolumeA
lstrcpynA
OpenMutexW
lstrcpynA
GetCurrentThreadId
GetFileType
lstrcmpW
GetModuleHandleA
lstrcpynA
ReadConsoleA
GetDriveTypeA
lstrcatA
lstrcpynA
GetVolumeInformationA
GetCurrentDirectoryA
VirtualProtect
Heap32Next
VirtualFree
lstrcpynA
GetSystemTime
lstrcpynA
lstrcpynA
GetPrivateProfileIntA
SetThreadPriority
lstrcpynA
GetDiskFreeSpaceW

d3d8

ValidateVertexShader
ValidatePixelShader
Direct3DCreate8
DebugSetMute

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 854B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 796KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ