336ff2c5986d1186c9ae401a9979db88f078c0c0c56da4a35ae70eda1fec4f5a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

336ff2c5986d1186c9ae401a9979db88f078c0c0c56da4a35ae70eda1fec4f5a
Size

818KB
MD5

a60457be835e7c3e5865df5bcf7df0b3
SHA1

951d65b540b033b85f7885eaf623bb752d7fcad3
SHA256

336ff2c5986d1186c9ae401a9979db88f078c0c0c56da4a35ae70eda1fec4f5a
SHA512

41af8adafab37e1e88d36717d82ef3ddedecef92f0ed7cab57a0678fc33fce79ff5e77db75d045fdbada72d8d4ef3115a020327fbe07e1e4ab9b625330713f3e
SSDEEP

12288:xu+0+CzEcZjGKmTt3cAeu8gEkUUkO3DlC8xu76i6ecKQ96ocDr7Er4TljAmVO7RP:U+0tlhuRsXpFOTlzumi62Q8tXymQ7HH

Score

N/A

Malware Config

Signatures

Files

336ff2c5986d1186c9ae401a9979db88f078c0c0c56da4a35ae70eda1fec4f5a
.exe windows x86

cbf00e129e844b12a7d66f64872fe7f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpW
GetFileType
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
SetThreadPriority
GetCurrentThreadId
lstrcpynA
lstrcpynA
ReadConsoleA
FindFirstVolumeA
lstrcpynA
lstrcpynA
lstrcatA
GetSystemTime
lstrcpynA
GetVolumeInformationA
GetDiskFreeSpaceW
GetDriveTypeA
Heap32First
lstrcpynA
lstrcpynA
GetPrivateProfileIntA
lstrcpynA
OpenMutexW
VirtualFree
WriteFile
VirtualProtectEx
GetModuleHandleA

cmdial32

RasCustomDialDlg
InetDialHandler
AutoDialFunc
RasCustomDial

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ