a127e09a548a05765b4cf553ae6a92148a52254d6990f5bc1daeb06b0b3fa523

General

Target

a127e09a548a05765b4cf553ae6a92148a52254d6990f5bc1daeb06b0b3fa523
Size

304KB
MD5

6535027dc744b7948659706907ba5f20
SHA1

60c262b9644be36bb9c941fd7c6ba274e02c2ae2
SHA256

a127e09a548a05765b4cf553ae6a92148a52254d6990f5bc1daeb06b0b3fa523
SHA512

ec2d8e5771eb13af779035cef01514b578ebdb126cca2bca91068005ce76b20c9aef3d13d542cf83bd003409bfe3686b59d5b4bcfd1dea4ce98be656d163d9d6
SSDEEP

6144:8cP+wbqVxSVN8tMdEfOjthSDwcz0pziDfjDaND:DJb04sWIzmYfCND

Score

N/A

Malware Config

Signatures

Files

a127e09a548a05765b4cf553ae6a92148a52254d6990f5bc1daeb06b0b3fa523
.exe windows x86

76fc0ab28f8c458c5da81b29e0b7b6db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadFile
WriteConsoleW
lstrcpyA
GetCurrentDirectoryW
CreateMutexA
FindResourceA
GetLastError
WriteConsoleW
GetFileSize
FormatMessageA
ReleaseMutex
SetFileAttributesA
IsBadStringPtrW
WriteConsoleW
HeapCreate
lstrcpyW
GetModuleHandleA
GetStartupInfoA
GetFileTime
IsValidLocale
CloseHandle

msi

MsiCreateRecord
MsiAdvertiseProductA
MsiCloseAllHandles
MsiCloseHandle

user32

PeekMessageW
GetWindowLongW
DispatchMessageA
IsCharLowerA
GetWindowTextA
wsprintfW
SetCursorPos
SetFocus
PostMessageW
LoadCursorW
IsWindow
IsZoomed
IsDialogMessageA

wldap32

ldap_add

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

76fc0ab28f8c458c5da81b29e0b7b6db

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 20KB

.rsrc Size: 293KB - Virtual size: 293KB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 224B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 20KB

.rsrc
Size: 293KB - Virtual size: 293KB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 224B