04dd153f5e2ae927a548664bf2f67e6778d9396df95616018bc5a3cdeaa3117c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04dd153f5e2ae927a548664bf2f67e6778d9396df95616018bc5a3cdeaa3117c
Size

816KB
MD5

1f33783de5e251b5d83099f9b6993573
SHA1

addcba011329117ae3d9a35bc1f23d46f8f48d62
SHA256

04dd153f5e2ae927a548664bf2f67e6778d9396df95616018bc5a3cdeaa3117c
SHA512

67b194cb5c999bfd600f9f9d440c8a92a1db4590640d33023cfa61c03b979571499fae1c14662dea00fdd1fe2522881886411a30a7c6719cbb4ab312a3545a85
SSDEEP

24576:0jNpT1Muog8KmrWHt5kAfLMOEDdPoLAfSSz08:QT1daKbnkASBmAaSz

Score

N/A

Malware Config

Signatures

Files

04dd153f5e2ae927a548664bf2f67e6778d9396df95616018bc5a3cdeaa3117c
.exe windows x86

78ea07c657e806039894e497c822109b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateDirectoryA
GetPrivateProfileIntA
GetCurrentThreadId
lstrlenA
GetModuleHandleA
lstrcmpA
lstrlenA
lstrlenA
VirtualProtect
VirtualFree
lstrlenA
lstrlenA
GetCommandLineA
TlsGetValue
lstrcatA
lstrlenA
lstrlenA
lstrlenA
SetCurrentDirectoryW
DeleteFileW
GetDiskFreeSpaceA
GetFileSize
SetLocaleInfoW
WriteConsoleW
SetThreadPriority
FormatMessageW
lstrlenA
lstrlenA
OpenMutexA

cdosys

DllCanUnloadNow
DllRegisterServer
DllGetClassObject
DllUnregisterServer

Sections

.TEXT
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.adata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE