47570bafdb74aba5d89598b187f26af0cd3e145ae07a2702fecd7a2c190d9111

General

Target

47570bafdb74aba5d89598b187f26af0cd3e145ae07a2702fecd7a2c190d9111
Size

777KB
MD5

6760f1157017651c2d5a34ad2fceaf50
SHA1

24907ba70447a76e2a8cade5285622185ed3f0f2
SHA256

47570bafdb74aba5d89598b187f26af0cd3e145ae07a2702fecd7a2c190d9111
SHA512

21ee49a8e849677e26d56338f443aadcb0e1cb7316b782b723df009a57342a5bc9b1a42cc49d16ac23cc67b01e1f65e866d5c9216503e8386da209ef40539ada
SSDEEP

24576:Sn9TLuWF6xTnpUDzZ+4dus+kaBcF99qm:Sn9XuW0xTpE9+Vs/aB+99

Score

N/A

Malware Config

Signatures

Files

47570bafdb74aba5d89598b187f26af0cd3e145ae07a2702fecd7a2c190d9111
.exe windows x86

5547fd6e5c6e6b866210eeaf7fb32b55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpyA
HeapCreate
IsBadStringPtrW
ReleaseMutex
IsValidLocale
ReadFile
CreateMutexA
GetLastError
ReadConsoleA
CloseHandle
GetStartupInfoW
FindResourceA
GetFileSize
GetCurrentDirectoryW
ReadConsoleA
lstrcpyW
FormatMessageA
GetModuleHandleA
ReadConsoleA
SetFileAttributesA
GetFileTime

msi

MsiCreateRecord
MsiAdvertiseProductA
MsiCloseHandle
MsiCloseAllHandles

user32

IsWindow
GetWindowTextA
SetFocus
IsZoomed
DispatchMessageA
SetCursorPos
GetWindowLongW
PeekMessageW
PostMessageW
IsCharLowerA
LoadCursorW
IsDialogMessageA
wsprintfW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 766KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5547fd6e5c6e6b866210eeaf7fb32b55

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 20KB

.rsrc Size: 766KB - Virtual size: 2.1MB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 224B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 20KB

.rsrc
Size: 766KB - Virtual size: 2.1MB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 224B