c59fd708692fffd5cad0c93425afa0a066b5399fcd5af9228f42feaea2d8b028

General

Target

c59fd708692fffd5cad0c93425afa0a066b5399fcd5af9228f42feaea2d8b028
Size

786KB
MD5

658ed23d5f84a34d5c7792fb30b35370
SHA1

3a4c7f421899822c0005527c68b54c8102bd4eaf
SHA256

c59fd708692fffd5cad0c93425afa0a066b5399fcd5af9228f42feaea2d8b028
SHA512

10753497728cbba7cb84a9032d2b1b6b684bf73de4395b415b092ee0f5827e9ebf99a73886985785093e58bc74bfe3a5c32ee1279e14431505efff9f1fd6e5c8
SSDEEP

12288:hZXGdnUXvyUiaFxxQ0I9UvzMkIT1HJkvt81ZsRaRQo11Y9PXNGrqDo9x:hYdnAbFxBI9U4xkAjRj29PXNGrqDo9x

Score

N/A

Malware Config

Signatures

Files

c59fd708692fffd5cad0c93425afa0a066b5399fcd5af9228f42feaea2d8b028
.exe windows x86

cff8ed7e06241ced55c9a31d5969d552

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentDirectoryW
GetStartupInfoW
ReadConsoleA
GetFileSize
ReadConsoleA
CreateMutexA
ReadConsoleA
GetLastError
GetModuleHandleA
IsValidLocale
FormatMessageA
InitializeCriticalSection
FindResourceA
IsBadStringPtrW
CloseHandle
ReadFile
HeapCreate
GetFileTime
lstrcpyA
lstrcatA
SetFileAttributesA

msi

MsiCloseAllHandles
MsiAdvertiseProductA
MsiCreateRecord
MsiCloseHandle

user32

SetCursorPos
PostMessageW
IsZoomed
IsDialogMessageA
DispatchMessageA
GetWindowTextA
SetFocus
IsWindow
PeekMessageW
wsprintfW
GetWindowLongW
IsCharLowerA
LoadCursorW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 700KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 772KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cff8ed7e06241ced55c9a31d5969d552

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 700KB

.rsrc Size: 772KB - Virtual size: 1.4MB

.text1 Size: 1024B - Virtual size: 263B

.data2 Size: 512B - Virtual size: 208B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 700KB

.rsrc
Size: 772KB - Virtual size: 1.4MB

.text1
Size: 1024B - Virtual size: 263B

.data2
Size: 512B - Virtual size: 208B