home

RawCap.exe

RawCap

NETRESEC AB

Publisher:
NETRESEC AB

Product:
RawCap

Version:
0.1.5.0

MD5:
0d7a08e7f58bfe020c59d739911ee519

SHA-1:
c427933591274c97ad00516ab91454c9ea71c5eb

SHA-256:
f6917fa47ce498af0dd840e1467c29c1701dde0a850009ae7523f554b12ad379

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 11:33:33 PM UTC  (a few moments ago)

File size:
23 KB (23,552 bytes)

Product version:
0.1.5.0

Copyright:
Copyright NETRESEC AB 2013

Original file name:
RawCap.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\rawcap.exe

File PE Metadata
Compilation timestamp:
6/24/2013 2:32:43 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:4hhCzKWJ+QbGt8UpJSj81FnU6boLNqbag/MDyNfn1AB+CzYcHe+m:ChCa8YFxbI/kNABfzYcHe+m

Entry address:
0x693A

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.7931

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
18.5 KB (18,944 bytes)

The file RawCap.exe has been seen being distributed by the following 3 URLs.

https://www.netresec.com/?download=RawCap

http://www.netresec.com/?download=RawCap

http://www.majorgeeks.com/index.php?ct=files&action=download&

Scan RawCap.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.