06fbe4eebebf320299b3b09a33da7414e47c1fbc4cfe3e13bba07d90d6d23db9

General

Target

06fbe4eebebf320299b3b09a33da7414e47c1fbc4cfe3e13bba07d90d6d23db9
Size

64KB
MD5

61ecba67ffb8122f710be3c299a96450
SHA1

8039ccf4ecf99c0c09e369a12bb8c3f6ab089359
SHA256

06fbe4eebebf320299b3b09a33da7414e47c1fbc4cfe3e13bba07d90d6d23db9
SHA512

596701b69249b883ff2d5cf718c0f0cbf9ddf8db67e5850829c23fd3079ec446e890855f35d1200b481a8580933c703f416c43d1b421be909f0d95f0694f4484
SSDEEP

1536:+dyQZksJMa1xf3DU/GM4FYIGw058k+iXu1:+dyQZkgjA4FYxHW1

Score

N/A

Malware Config

Signatures

Files

06fbe4eebebf320299b3b09a33da7414e47c1fbc4cfe3e13bba07d90d6d23db9
.exe windows x86

dc99e6f5dca0d6fc1a294b323820b963

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReleaseMutex
lstrlenW
WriteConsoleW
GetStartupInfoA
lstrcpyW
IsValidLocale
WriteConsoleW
ReadFile
CloseHandle
GetFileSize
WriteConsoleW
IsBadStringPtrA
HeapCreate
GetCurrentDirectoryA
GetLastError
FindResourceA
GetFileAttributesA
GetModuleHandleA
FormatMessageA
GetFileTime
CreateMutexA

msi

MsiCloseAllHandles
MsiAdvertiseProductA
MsiCreateRecord
MsiCloseHandle

clbcatq

SetupOpen
SetupOpen
ComPlusMigrate
ComPlusMigrate
SetSetupSave
DllGetClassObject
SetSetupSave
DllGetClassObject
CheckMemoryGates
ComPlusMigrate
CheckMemoryGates
CheckMemoryGates
SetupOpen

ntshrui

IsPathSharedA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qedit
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dc99e6f5dca0d6fc1a294b323820b963

Headers

File Characteristics

Imports

kernel32

msi

clbcatq

ntshrui

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 16KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 53KB - Virtual size: 53KB

.adata Size: 1024B - Virtual size: 263B

.qedit Size: 512B - Virtual size: 240B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 16KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 53KB - Virtual size: 53KB

.adata
Size: 1024B - Virtual size: 263B

.qedit
Size: 512B - Virtual size: 240B