16d14dd74446372660b20a2527537434ea9085c8c8ced1f405607a3c0e99d677 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16d14dd74446372660b20a2527537434ea9085c8c8ced1f405607a3c0e99d677
Size

818KB
MD5

ddd4282b59d95fb6b51d59845b21c938
SHA1

9f2654c569bf1e0b4765ea2a512d9f4b3ebcdbda
SHA256

16d14dd74446372660b20a2527537434ea9085c8c8ced1f405607a3c0e99d677
SHA512

966916b62ee2fd2580cb1b8d7d05766fbd2ea28d12c7cba8a4d4d7f7acfa2e9fca8b99d18f1a9351f6b5926dcc0b9c6aea1839d29dc9a2da6e6b28dd9f1c2d23
SSDEEP

24576:q4kd2ff5FTXA8zNFWvrrUVsHx++NWMQza:a2ff5FrbzNFWvcsR5NWHz

Score

N/A

Malware Config

Signatures

Files

16d14dd74446372660b20a2527537434ea9085c8c8ced1f405607a3c0e99d677
.exe windows x86

ca4149a4b7bfb3cac487f64040a7dd07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadPriority
GetSystemTime
Heap32First
GetPrivateProfileIntA
lstrcatA
lstrcpynA
GetVolumeInformationA
GetDriveTypeA
lstrcpynA
ReadConsoleA
lstrcpynA
lstrcpynA
lstrcpynA
lstrcpynA
lstrcpynA
GetFileType
lstrcpynA
VirtualFree
FindFirstVolumeA
OpenMutexW
GetDiskFreeSpaceW
VirtualProtectEx
lstrcmpW
lstrcpynA
GetCurrentThreadId
lstrcpynA
WriteFile
GetCurrentDirectoryA
GetModuleHandleA

cmdial32

InetDialHandler
RasCustomDialDlg
AutoDialFunc
RasCustomDial

Sections

.text
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ