1b165391db639e44b1ca9435cac6b7edbbc4c944dc00bf7f4b6ff07be12e5083

General

Target

1b165391db639e44b1ca9435cac6b7edbbc4c944dc00bf7f4b6ff07be12e5083
Size

790KB
MD5

70ffb95159a218e4abd8011364c8b8f0
SHA1

b22071b1bfc9afb83e15cb3feb3ef295e48c8b48
SHA256

1b165391db639e44b1ca9435cac6b7edbbc4c944dc00bf7f4b6ff07be12e5083
SHA512

119d2500272952b0d5aa098e6ca3b4b70994d93d01dcadb109e1690a71108b056e124b606ce6f1d82ea5afee9ee824ca476e9590ff694704247c619caa30c5a3
SSDEEP

24576:uFeldCm0EKT1yAqiGaG2RuQMFboffmFt:9lhFe1pqUGQuGmT

Score

N/A

Malware Config

Signatures

Files

1b165391db639e44b1ca9435cac6b7edbbc4c944dc00bf7f4b6ff07be12e5083
.exe windows x86

28746778bb22af7cf61ec74365feef35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentDirectoryW
FormatMessageW
InitializeCriticalSection
GetLastError
GetModuleHandleA
GetFileSize
SetFileTime
GetLocalTime
SetFileTime
LeaveCriticalSection
SetFileTime
lstrcatA
ReadFile
FindResourceA
HeapCreate
CloseHandle
lstrcpyA
CreateMutexW
GetStartupInfoW
SetFileAttributesW
IsBadWritePtr

msi

MsiCloseHandle
MsiCreateRecord
MsiAdvertiseProductA
MsiCloseAllHandles

user32

GetWindowTextA
SetCursorPos
GetWindowLongW
IsWindow
PeekMessageW
wsprintfW
LoadCursorW
SetFocus
GetWindowRect
DispatchMessageA
IsDialogMessageA
PostMessageW
IsZoomed

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 716KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 775KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 1024B - Virtual size: 193B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

28746778bb22af7cf61ec74365feef35

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 716KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 775KB - Virtual size: 1.4MB

.data1 Size: 1024B - Virtual size: 193B

.data2 Size: 512B - Virtual size: 146B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 716KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 775KB - Virtual size: 1.4MB

.data1
Size: 1024B - Virtual size: 193B

.data2
Size: 512B - Virtual size: 146B