cf567ffdbf2bfa253ef31f1badf2c9954999e31ec61df418a81680f56b69d5a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf567ffdbf2bfa253ef31f1badf2c9954999e31ec61df418a81680f56b69d5a0
Size

818KB
MD5

f212af49b7627af4f9301362fe8ab753
SHA1

22a22621a4ae0366827123cd6c26ca4675a41610
SHA256

cf567ffdbf2bfa253ef31f1badf2c9954999e31ec61df418a81680f56b69d5a0
SHA512

fad70a975b70d176f781d967cd36dc78e425f77ba15e5c6ab6b973266910a0fdac6d0fd08ac8a163d5ebdbf6f725c880e6b8b35f921a269e541956f7ff6b0adc
SSDEEP

12288:Iy+3BkE/MtmcR+UzmnYCEM5V4rm87NXVv3y3hPunMcFifq1LkgH9nh1onvJQin:UD8+lnz4rdZ3y3hekYIG7onvJQg

Score

N/A

Malware Config

Signatures

Files

cf567ffdbf2bfa253ef31f1badf2c9954999e31ec61df418a81680f56b69d5a0
.exe windows x86

611f7022363528f5d4466920bee08454

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
lstrcmpW
GetCurrentThreadId
VirtualFree
OpenMutexW
lstrcpynA
GetVolumeInformationA
lstrcatA
GetFileType
lstrcpynA
GetModuleHandleA
SetThreadPriority
VirtualProtect
GetSystemTime
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
Heap32First
lstrcpynA
lstrcpynA
lstrcpynA
FindFirstVolumeA
ReadConsoleA
lstrcpynA
GetDiskFreeSpaceW
WriteFile
lstrcpynA
GetDriveTypeA
GetPrivateProfileIntA

comuid

DllUnregisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ