8bf1c12d8a8806a645f98fecc67728ba0192f71c9ff856328cc3f7924a267185 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8bf1c12d8a8806a645f98fecc67728ba0192f71c9ff856328cc3f7924a267185
Size

818KB
MD5

a6fa0c2b0f8ab8ecc55b3658e393f171
SHA1

26a309592e2363bfff4fd767be81766b8df39a91
SHA256

8bf1c12d8a8806a645f98fecc67728ba0192f71c9ff856328cc3f7924a267185
SHA512

a46d0648607b9ae2bf27001174a25109ba566054755aff53899ea5199b9f65bd6fa3ac1e02a9fc43c82a09fb8cef919a0be4a587700eb2acc833b29cdb243b3b
SSDEEP

24576:1UmAQ+sQDl0cG85pT06CjsIjM1rs4DN9nGFpfYXa:1hPQDichl06Coq+95YpfM

Score

N/A

Malware Config

Signatures

Files

8bf1c12d8a8806a645f98fecc67728ba0192f71c9ff856328cc3f7924a267185
.exe windows x86

7805a1dcbe8d6cb80d5d0ef501bb196d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
VirtualFree
lstrcpynA
lstrcpynA
GetSystemTime
lstrcpynA
GetDiskFreeSpaceW
lstrcpynA
GetPrivateProfileIntA
GetVolumeInformationA
GetDriveTypeA
lstrcmpW
lstrcpynA
GetCurrentThreadId
SetThreadPriority
lstrcpynA
lstrcpynA
Heap32First
FindFirstVolumeA
lstrcatA
GetCurrentDirectoryA
OpenMutexW
WriteFile
VirtualProtectEx
GetFileType
lstrcpynA
ReadConsoleA
GetModuleHandleA
lstrcpynA

cmdial32

AutoDialFunc
RasCustomDial
RasCustomDialDlg
InetDialHandler

Sections

.text
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ