[Vol-users] moddump Error: e_magic 8D4C is not a valid DOS signature.

21 Mar 2013

      Working with a ransomware infection, trying to dump one of the modules that looks
suspicious (the only one to reference a file in user's AppData). I'm trying to
dump it via the base address found through modscan, but getting:
moddump Error: e_magic 8D4C is not a valid DOS signature.

I tried -u. Is there any other way to dump it?

--
chort

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

[Vol-users] moddump Error: e_magic 8D4C is not a valid DOS signature.