3fdfa801e273b8293c90c72e3f01047fd351234813373dd3a995773e8b0dad50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fdfa801e273b8293c90c72e3f01047fd351234813373dd3a995773e8b0dad50
Size

818KB
MD5

41faf27b8e34b97d65f8acb82fdbf4e8
SHA1

4ab959d445a44ddef4019182456efbbb506288d4
SHA256

3fdfa801e273b8293c90c72e3f01047fd351234813373dd3a995773e8b0dad50
SHA512

99ad47154b5614d6b95378f052b98fc15556141e1a51e55f31aa0b8baccf1d8078a259e8c490d529a494bbd5333165b6db3382684045c4df1b3b574fc95c766e
SSDEEP

24576:EDW6ERC8fgT4hrVLAUtVOK03R4bxawSW:ER8IsA0VLb

Score

N/A

Malware Config

Signatures

Files

3fdfa801e273b8293c90c72e3f01047fd351234813373dd3a995773e8b0dad50
.exe windows x86

ff04daaf651146f67be6020665ea2e8e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleA
GetSystemTime
lstrcpynA
lstrcatA
Heap32First
GetFileType
FindFirstVolumeA
lstrcpynA
WriteFile
GetVolumeInformationA
GetCurrentThreadId
SetThreadPriority
VirtualProtectEx
lstrcpynA
GetCurrentDirectoryA
OpenMutexW
lstrcpynA
lstrcpynA
GetDiskFreeSpaceW
lstrcmpW
GetDriveTypeA
VirtualFree
lstrcpynA
GetPrivateProfileIntA
GetModuleHandleA
lstrcpynA
lstrcpynA
lstrcpynA
lstrcpynA

cmdial32

AutoDialFunc
RasCustomDial
InetDialHandler
RasCustomDialDlg

Sections

.text
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ