8a8f75c46622e0f56d00451771a29783b7c64cedbc4074d6dd00cc19acbc7609 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a8f75c46622e0f56d00451771a29783b7c64cedbc4074d6dd00cc19acbc7609
Size

818KB
MD5

905ebbf910d5ae22fc6c8eb6afd23e93
SHA1

1db86013272cf65daf67f978ff0b65a8d28ca199
SHA256

8a8f75c46622e0f56d00451771a29783b7c64cedbc4074d6dd00cc19acbc7609
SHA512

0ccd8f80ed8a3a9aa950dbc8435051371094e7002185f4d5b4217a3098738c701ce52c3dfe347dabeed3a5f5f1bf88c790d7d1c38a0700dd79e63c17c7e4abc8
SSDEEP

24576:/1O2HZhm9hL9ZZXQcouN1To26vQgKCijAVhIvJ:/1O25c99hXN1Aogl2vJ

Score

N/A

Malware Config

Signatures

Files

8a8f75c46622e0f56d00451771a29783b7c64cedbc4074d6dd00cc19acbc7609
.exe windows x86

7dd33e0d0272b94280ffefe21081adaf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
GetCurrentThreadId
lstrcmpW
FindFirstVolumeA
GetModuleHandleA
GetSystemTime
lstrcpynA
SetThreadPriority
lstrcpynA
GetCurrentDirectoryA
lstrcpynA
GetDriveTypeA
VirtualProtectEx
WriteFile
GetPrivateProfileIntA
lstrcpynA
lstrcpynA
lstrcpynA
lstrcpynA
GetDiskFreeSpaceW
lstrcpynA
GetFileType
VirtualFree
OpenMutexW
Heap32First
lstrcpynA
lstrcpynA
GetVolumeInformationA
ReadConsoleA

cmdial32

InetDialHandler
RasCustomDial
AutoDialFunc
RasCustomDialDlg

Sections

.text
Size: 18KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ