a2d01b416b49174c2a0d3f10d4a5e596bc0a43e18c443f7ad1ba8fd29415776d

General

Target

a2d01b416b49174c2a0d3f10d4a5e596bc0a43e18c443f7ad1ba8fd29415776d
Size

396KB
MD5

6cd56829c951ba8c8356b11d7cdd88b0
SHA1

29aac656da13e2dc253bad6e8f92125cb6044ab0
SHA256

a2d01b416b49174c2a0d3f10d4a5e596bc0a43e18c443f7ad1ba8fd29415776d
SHA512

4a3329a12196195a411b8e948247cf29195c644d7a941b2045ef94e17dabcac10561d58b9b52d7c9145223acc21dca8df5b6095e8fe8380262f47b1a19c375e8
SSDEEP

12288:d0eGxhD5NOZ2i269yeJ6CCDFDT7YwmD5geVR:dHKlgZ2Nm6CYf7YwmD5gQ

Score

N/A

Malware Config

Signatures

Files

a2d01b416b49174c2a0d3f10d4a5e596bc0a43e18c443f7ad1ba8fd29415776d
.exe windows x86

0db27604ff762d3f34210feddb2eb4c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetLastError
HeapCreate
CloseHandle
GetStartupInfoW
SetFileTime
CreateMutexA
GetLocalTime
GetFileSize
FindResourceA
GetCurrentDirectoryW
IsBadStringPtrW
lstrcatA
LeaveCriticalSection
SetFileTime
SetFileAttributesW
GetModuleHandleA
InitializeCriticalSection
ReadFile
lstrcpyA
SetFileTime
FormatMessageA

msi

MsiCreateRecord
MsiAdvertiseProductA
MsiCloseAllHandles
MsiCloseHandle

user32

PeekMessageW
SetCursorPos
GetWindowLongW
GetWindowTextA
IsWindow
GetWindowRect
DispatchMessageA
LoadCursorW
SetFocus
PostMessageW
IsDialogMessageA
IsZoomed
wsprintfW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 381KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text1
Size: 1024B - Virtual size: 241B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 161B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0db27604ff762d3f34210feddb2eb4c6

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 256KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 381KB - Virtual size: 632KB

.text1 Size: 1024B - Virtual size: 241B

.data2 Size: 512B - Virtual size: 161B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 256KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 381KB - Virtual size: 632KB

.text1
Size: 1024B - Virtual size: 241B

.data2
Size: 512B - Virtual size: 161B