e3cfdd5bc4c0bf1004cb1dbf4b38d275a400f21b49bb566d13d8257a8fced2ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e3cfdd5bc4c0bf1004cb1dbf4b38d275a400f21b49bb566d13d8257a8fced2ce
Size

818KB
MD5

346f97b5fe38da2a7d931fe19630e46e
SHA1

8de7f639445331d84e789c1dc1eff30563cdc1c2
SHA256

e3cfdd5bc4c0bf1004cb1dbf4b38d275a400f21b49bb566d13d8257a8fced2ce
SHA512

8442dabd9f8afcccc31a21e5b52f0af2b8a96430f15ff93a8a233a57e61829f81fe87bcd0184153a81b7bb09bc7bade2b6123635cbc8f441ee7c42f070018abe
SSDEEP

12288:600YAY+zVObGN/BqeT35WiwhQyrVZ6CCzH/yV02kx4itGP/C3H3P8RWBshlvKS7:T0y+zgeT3MiL/y3kxHGPYXPNmTvfT0

Score

N/A

Malware Config

Signatures

Files

e3cfdd5bc4c0bf1004cb1dbf4b38d275a400f21b49bb566d13d8257a8fced2ce
.exe windows x86

5b66ea5964e380db7642cb5069fdf2e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
GetSystemTime
lstrcpynA
lstrcpynA
WriteFile
lstrcpynA
Heap32First
GetCurrentThreadId
lstrcpynA
GetVolumeInformationA
SetThreadPriority
lstrcpynA
lstrcpynA
GetPrivateProfileIntA
lstrcatA
VirtualProtectEx
GetModuleHandleA
lstrcpynA
ReadConsoleA
FindFirstVolumeA
GetFileType
GetCurrentDirectoryA
GetDriveTypeA
lstrcpynA
lstrcmpW
VirtualFree
lstrcpynA
GetDiskFreeSpaceW
OpenMutexW

cmdial32

RasCustomDial
InetDialHandler
RasCustomDialDlg
AutoDialFunc

Sections

.text
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ