a5891b62be45108fe08d7e4f265e4d43af959a6214d79a2ba40c9f5a293d8d70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a5891b62be45108fe08d7e4f265e4d43af959a6214d79a2ba40c9f5a293d8d70
Size

810KB
MD5

70ca9164a179041894fa997bc3d90426
SHA1

9447ec13364482d4d9e7ab95f5b0677a1db172a8
SHA256

a5891b62be45108fe08d7e4f265e4d43af959a6214d79a2ba40c9f5a293d8d70
SHA512

8b0b27eb3b7ac1416b31b05181f3e33eeacde271f288655a89b59402b2552105e5f19d64aa7c5b1874c0cfc56eeb404a43be4551a3fef6f3a5d0f4792b91be79
SSDEEP

24576:5/dqXaMFHevlWULdpwU53x7IfpvANe7b:NYXZ8dF5B7IfpvAg

Score

N/A

Malware Config

Signatures

Files

a5891b62be45108fe08d7e4f265e4d43af959a6214d79a2ba40c9f5a293d8d70
.exe windows x86

152ec588f93a92c19e657f0ba7e7fba3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
lstrcpyA
VirtualProtectEx
SetLastError
MoveFileW
GetFullPathNameA
GetModuleHandleA
CreateSemaphoreA
SetLastError
SetLastError
LoadLibraryExA
IsBadStringPtrW
SetCurrentDirectoryA
SetLastError
GetLogicalDriveStringsA
SetLastError

rasdlg

RasEntryDlgA
RasSrvEnumConnections
DwTerminalDlg
RasDialDlgA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.ydata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ