441334fc09e7856d1fa303c662e15d82070b1fb185ff3e96c08c91c84813fd39 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

441334fc09e7856d1fa303c662e15d82070b1fb185ff3e96c08c91c84813fd39
Size

810KB
MD5

6ca756fe4329c70e695614a781cb1a61
SHA1

025ed7163b620c1188c06f45ca84255917bbd8b8
SHA256

441334fc09e7856d1fa303c662e15d82070b1fb185ff3e96c08c91c84813fd39
SHA512

bb82a690af6f5194b088cd3da94c8d7cb34a0187e9d021b4d19acb5389bf04505195005c64631af050804c527499730e079018f0458615891d2f98e87ac3e48a
SSDEEP

12288:n7mnuHVxz3jp274/WQNKh6P+E2+ylk5zcuYGLCiVVAE4cWGwhb8s9sLGhlXrD+jy:7561EKz3+ylGzDLCiVPbWxhbTyUD+1

Score

N/A

Malware Config

Signatures

Files

441334fc09e7856d1fa303c662e15d82070b1fb185ff3e96c08c91c84813fd39
.exe windows x86

7fda70097c57a21ee897d89e9236c4ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
SetCurrentDirectoryA
IsBadStringPtrW
lstrcpyA
LoadLibraryExA
CreateSemaphoreA
SetLastError
GetLogicalDriveStringsA
SetLastError
GetModuleHandleA
GetFullPathNameW
SetLastError
MoveFileW
SetLastError
VirtualProtectEx
SetLastError

rasdlg

RasSrvEnumConnections
RasEntryDlgA
RasDialDlgA
DwTerminalDlg

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.udata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.ydata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ