1b5b4ed990ece75fd30cbae3a78699d96104957c90f97ee1d0aace8cf4150a81

General

Target

1b5b4ed990ece75fd30cbae3a78699d96104957c90f97ee1d0aace8cf4150a81
Size

114KB
MD5

6eb76d49c1471853a86cf47e699833f0
SHA1

ad2d5cf734a9daaaeedf3563a8e5038f8be24e4f
SHA256

1b5b4ed990ece75fd30cbae3a78699d96104957c90f97ee1d0aace8cf4150a81
SHA512

92d6215ca787b8767d434bc5fbf7f3a944eac7b77ea7bcad7e46936190095979f89167b4c2d697bd12f47f956af08a62e85bd98bd05e698d9ab34d3824bae289
SSDEEP

3072:2KZxuedcXXB2DwJtVb6MR4MmF1hKie+oKN+m8cKHVu:XuccXI8JtVeMR431hDfo3m8Zu

Score

N/A

Malware Config

Signatures

Files

1b5b4ed990ece75fd30cbae3a78699d96104957c90f97ee1d0aace8cf4150a81
.exe windows x86

3eb7afc02ff8cd3e545343cc869f8a40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsValidLocale
WriteConsoleW
ReleaseMutex
WriteConsoleW
GetCurrentDirectoryA
GetModuleHandleA
FormatMessageA
lstrlenW
GetFileSize
CloseHandle
lstrcpyW
WriteConsoleW
ReadFile
FindResourceA
IsBadStringPtrA
HeapCreate
GetStartupInfoA
GetFileTime
SetPriorityClass
GetLastError
GetFileAttributesA

msftedit

SetCustomTextOutHandlerEx
RichListBoxWndProc
RichEditWndProc
RichComboBoxWndProc

clbcatq

SetupOpen
SetupOpen
DllGetClassObject
CheckMemoryGates
SetupOpen
DllGetClassObject
SetSetupSave
CheckMemoryGates
ComPlusMigrate
CheckMemoryGates
ComPlusMigrate
ComPlusMigrate
SetSetupSave

dsprop

CheckADsError

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 49B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qedit
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3eb7afc02ff8cd3e545343cc869f8a40

Headers

File Characteristics

Imports

kernel32

msftedit

clbcatq

dsprop

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 103KB - Virtual size: 103KB

.adata Size: 1024B - Virtual size: 49B

.qedit Size: 512B - Virtual size: 256B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 103KB - Virtual size: 103KB

.adata
Size: 1024B - Virtual size: 49B

.qedit
Size: 512B - Virtual size: 256B