11c6912624149a35534a9df3fc20b32b9d7992716e27731d2c48b355ff0a718a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11c6912624149a35534a9df3fc20b32b9d7992716e27731d2c48b355ff0a718a
Size

810KB
MD5

64daacbcb12d86bc717dd86689397f86
SHA1

ff687b15099b657a54219559716a72d995f97104
SHA256

11c6912624149a35534a9df3fc20b32b9d7992716e27731d2c48b355ff0a718a
SHA512

8c7e93ad7725af07873442d42f9466079cdab826864e380c94154875c12e88a73a4695a30bd129c9ed7e00e520152862d0ea3a85d6b1fbd7f43d71771b72aa37
SSDEEP

12288:F1lmWC7UJen/FOnEYyI3NhCnlV5AMMu7xtiqtT1WozMs72/9:F1sWC7UJk/gCn+ru7xtTT1lzg

Score

N/A

Malware Config

Signatures

Files

11c6912624149a35534a9df3fc20b32b9d7992716e27731d2c48b355ff0a718a
.exe windows x86

fed68f6b1f03a1c7c5d8f9d97a93d766

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetLogicalDriveStringsA
GetFullPathNameA
SetLastError
GetModuleHandleA
SetLastError
SetLastError
SetLastError
SetCurrentDirectoryA
LoadLibraryExA
CreateSemaphoreA
MoveFileW
SetLastError
IsBadStringPtrW
SetLastError
VirtualProtectEx

rasdlg

RasDialDlgA
DwTerminalDlg
RasSrvEnumConnections
RasEntryDlgA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.ydata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ