2ec6a7ed6acca28326655b702a6c7a709b899ec5b8e22c376293e475f8e8361d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ec6a7ed6acca28326655b702a6c7a709b899ec5b8e22c376293e475f8e8361d
Size

297KB
MD5

2a18f01a25183a32c309cfb98f88e180
SHA1

03bfa5757a5523c4e45264321ce0a3b0756e6aec
SHA256

2ec6a7ed6acca28326655b702a6c7a709b899ec5b8e22c376293e475f8e8361d
SHA512

d6e5d7973078b16c75c52b77408919cd9cdd92162070ddfa34a002456ca33593664855bdf5fcff844dd53f958b37b825a320e82269cf5007264e0096f4518f3b
SSDEEP

6144:hDSyRwjf5hlZo8QLkMjwQ/I86olaH/QM4eWjkYfqtVCsfi60djrUQ:1bGvULkxQ/IYlnKWvfNwi6QjrU

Score

N/A

Malware Config

Signatures

Files

2ec6a7ed6acca28326655b702a6c7a709b899ec5b8e22c376293e475f8e8361d
.exe windows x86

08684fa8d766710a9bf1fb0530dbe964

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
SetLastError
HeapCreate
lstrcmpiA
GetDriveTypeW
EndUpdateResourceW
FileTimeToLocalFileTime
GetModuleFileNameA
GetModuleHandleA
GetLogicalDriveStringsA
SuspendThread
lstrcmpiA
GetBinaryTypeW
lstrlenA
IsValidCodePage
GetStdHandle
CreateWaitableTimerW
lstrcmpiA
Sleep
WaitForSingleObject
lstrcmpiA
GetProcessHeap
CreateNamedPipeA

rasdlg

RouterEntryDlgA
DwTerminalDlg
RasDialDlgA
RasEntryDlgA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 288KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ