d414f807f1297185ffc07df2965343f7f69d697de4cb1d9f2885b86c5a18fb31 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d414f807f1297185ffc07df2965343f7f69d697de4cb1d9f2885b86c5a18fb31
Size

818KB
MD5

a684b50dbd57c7016e03d0ec0ad5ee3c
SHA1

d09a5b702901f555a365da2dfe09fc2c9a89d399
SHA256

d414f807f1297185ffc07df2965343f7f69d697de4cb1d9f2885b86c5a18fb31
SHA512

d7aee429d6cad6001c464c71d78895ba80a2fcd69b018be97cb1c8a3cf4a7e610fc6c25fb4339556fec473069fc9229dd15bf0332bca3f69dd6754472846a0cb
SSDEEP

12288:Zn9t+6btjbf0w5QU2Oczokqyv+2nCsaVFonDv5Y4ba+XkHePR79LffJKFAEFX:x9DbVL2UELgs6wDv5Y3aAERRsFX

Score

N/A

Malware Config

Signatures

Files

d414f807f1297185ffc07df2965343f7f69d697de4cb1d9f2885b86c5a18fb31
.exe windows x86

4fa98eee7ceea06559be56693c5c4dc9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
VirtualProtect
lstrcpynA
GetPrivateProfileIntA
GetVolumeInformationA
GetSystemTime
lstrcatA
lstrcpynA
OpenMutexW
ReadConsoleA
lstrcpynA
lstrcmpW
SetThreadPriority
GetModuleHandleA
lstrcpynA
VirtualFree
lstrcpynA
lstrcpynA
FindFirstVolumeW
GetDiskFreeSpaceW
lstrcpynA
GetDriveTypeW
WriteFile
GetCurrentDirectoryA
GetFileType
lstrcpynA
lstrcpynA
Heap32Next
lstrcpynA

d3d8

ValidatePixelShader
Direct3DCreate8
ValidateVertexShader
DebugSetMute

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 854B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ