ec8cae471fa8e1036735bba97c1a20406479e289673208dd189a05fab46f4a7a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec8cae471fa8e1036735bba97c1a20406479e289673208dd189a05fab46f4a7a
Size

810KB
MD5

0b2b6912420f7170ef072d57f6ffc230
SHA1

ee6ea74aa2bbfb8521f8b5d2c8fbd99767f34922
SHA256

ec8cae471fa8e1036735bba97c1a20406479e289673208dd189a05fab46f4a7a
SHA512

7266f25cacfd8389acc9e52a929dc3d9966fb45a0b650e1f2f4b920c42203dff806246dcd5e3c1dcaa9a10515b5646870c9f4c62ca8006d73a56a54b2c516102
SSDEEP

24576:aKj5dpaCqam44ZJHrFCjuF8APnaUMABMANj:Xjoo8Zd9PBdNj

Score

N/A

Malware Config

Signatures

Files

ec8cae471fa8e1036735bba97c1a20406479e289673208dd189a05fab46f4a7a
.exe windows x86

95fb0a56494c08061acaf23d1905cce2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LoadLibraryExA
GetLastError
GetModuleHandleA
GetLogicalDriveStringsA
SetCurrentDirectoryA
GetLastError
CreateSemaphoreA
GetFullPathNameA
MoveFileW
VirtualProtectEx
GetLastError
GetLastError
IsBadStringPtrW
GetLastError
lstrcpyA
GetLastError

rasdlg

RasEntryDlgA
DwTerminalDlg
RasDialDlgA
RasSrvEnumConnections

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rdata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ