2158c03bf5793cd878e102e06adffdc2b1d6f0cbd4976e54f6f145d5085e8213 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2158c03bf5793cd878e102e06adffdc2b1d6f0cbd4976e54f6f145d5085e8213
Size

810KB
MD5

9175261bb13fb49be16e9eab1e1e11e0
SHA1

416e5d2cc653f837479e68399f7d0243d62bb4f7
SHA256

2158c03bf5793cd878e102e06adffdc2b1d6f0cbd4976e54f6f145d5085e8213
SHA512

3a5319372049d2ae4050f0e8cad5fd73713101283bc0a8ed084d439aaa58297a52dcac4247bb8d6fa034fbdffdbcd074ed97bf89729cc5dab72c8bd14560af08
SSDEEP

24576:tjHVW4Cjn+201tD8YvUA3Nahtj4GWzjijDB:9Vvin+2atD5Uf/j4GcqD

Score

N/A

Malware Config

Signatures

Files

2158c03bf5793cd878e102e06adffdc2b1d6f0cbd4976e54f6f145d5085e8213
.exe windows x86

ef72cbd3670d421855e0c7ebbb9eed43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
MoveFileW
SetLastError
SetLastError
GetLogicalDriveStringsA
GetModuleHandleA
SetLastError
OpenMutexA
VirtualProtectEx
LoadLibraryExA
SetLastError
CreateSemaphoreW
GetFullPathNameW
SetCurrentDirectoryA
SetLastError
lstrcpyA

rasdlg

RasSrvEnumConnections
DwTerminalDlg
RasEntryDlgA
RasDialDlgA

Sections

.code
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.udata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.gdata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ