6e4e6ef050161f03a8407c159baf9c87712dd0e812bfad04b70a13558f645817

General

Target

6e4e6ef050161f03a8407c159baf9c87712dd0e812bfad04b70a13558f645817
Size

273KB
MD5

7c5dab3f88e85d2c45523771ba362990
SHA1

08c1bd207e44953a36cf6a3c17fe23e3354f17e9
SHA256

6e4e6ef050161f03a8407c159baf9c87712dd0e812bfad04b70a13558f645817
SHA512

f111ce7fa7efb81b24f6af1ba70ff45aa33957f7d2864508f107179efffbfc3dddbfc03d1f5a3b396d95786ca32d4aa546661eb7bda3e192348bc05a018a4482
SSDEEP

6144:9UBMpTRpagsyC2rJi/28h9P/EORmc6roST2VdnPsK7L+twdalyow4Cg:tp9Z42rJi/XvlN6ziVd1Abw4d

Score

N/A

Malware Config

Signatures

Files

6e4e6ef050161f03a8407c159baf9c87712dd0e812bfad04b70a13558f645817
.exe windows x86

1a8bab27ca48923eedba5b0715377419

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynW
lstrcmpiW
OutputDebugStringA
LocalFree
lstrlenW
DeleteCriticalSection
MultiByteToWideChar
FlushInstructionCache
lstrcatW
InterlockedDecrement
LoadLibraryA
GetUserDefaultLCID
SetLastError
IsValidCodePage
SetUnhandledExceptionFilter
SizeofResource
GetSystemTimeAsFileTime
FindResourceW
LoadResource
HeapFree
EnterCriticalSection
GetCurrentProcess
LeaveCriticalSection
HeapAlloc
GetCurrentProcessId
HeapDestroy
LoadLibraryW
FreeLibrary
GetLastError
GetTickCount
QueryPerformanceCounter
FormatMessageW
lstrlenA
lstrcpyW
GetProcessHeap
GetProcAddress
GetSystemInfo
GetModuleFileNameW
VirtualFree
InterlockedIncrement

user32

SetDlgItemTextW
GetWindowRect
MessageBoxW
GetDlgItemTextW
GetParent
GetDlgItem
SetWindowTextW
CreateDialogParamW
LoadImageW
CopyRect
GetDialogBaseUnits
GetSystemMetrics
ShowWindow
DrawTextW
DestroyWindow
EnableWindow
LoadStringW
SendMessageW
GetWindow
SetFocus
GetWindowLongW
DialogBoxParamW
SendDlgItemMessageW
CharNextW
SetWindowLongW
GetClientRect
MapWindowPoints
SetWindowPos
EndDialog
SystemParametersInfoW

advapi32

RegisterTraceGuidsW
RegDeleteKeyW
RegQueryInfoKeyW
GetTraceEnableFlags
RegCreateKeyExW
RegCloseKey
UnregisterTraceGuids
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
RegQueryValueExW
GetTraceEnableLevel
RegOpenKeyExW
GetTraceLoggerHandle
TraceMessage

wldap32

ldap_count_references
ldap_count_values
ldap_controls_freeW
ldap_count_entries

gdi32

SetBkMode

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a8bab27ca48923eedba5b0715377419

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

wldap32

gdi32

Sections

.text Size: 118KB - Virtual size: 117KB

.rdata Size: 148KB - Virtual size: 224KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 118KB - Virtual size: 117KB

.rdata
Size: 148KB - Virtual size: 224KB

.rsrc
Size: 5KB - Virtual size: 4KB