BtcFinder3[.]0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

BtcFinder3.0.exe
Size

19.8MB
MD5

0a29e443b01c498d760e38f3609ad372
SHA1

a4fc17f595d1137a90ba439cee0dc2ac5d7ea7f7
SHA256

6fd72118850cc02cc3bdc113cb026b5f6c198e5c3396ee5c5b2b12e2e5dc9114
SHA512

59fb2ce6a7e6f755de4567956f03c0d3da9f9acea2182d2538a2146f03d9a8e02216abd540804c889a02650fb8eae164c62a36d093115a94b68e5e82370fa483
SSDEEP

393216:/Au5vy31ZU2rBL/Y5HqDv1HbEruHUAw7:YusdBF7HUAw7

Score

N/A

Malware Config

Signatures

Files

BtcFinder3.0.exe
.exe windows x86

140094f13383e9ae168c4b35b6af3356

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
ExitProcess
GetComputerNameA
GetModuleFileNameA
GetModuleHandleW
GetProcAddress
SetErrorMode
Sleep
VirtualAllocExNuma

shlwapi

PathFindFileNameA

msvcrt

malloc
free
memset
strcmp
_strcmpi
strcpy

Sections

.text
Size: 19.7MB - Virtual size: 19.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ