de275559774e74fa99db42c993548b2d7b1d6d5b940058add009d0067f46f31c

General

Target

de275559774e74fa99db42c993548b2d7b1d6d5b940058add009d0067f46f31c
Size

786KB
MD5

915fdcd07db1e388187f396dab27f260
SHA1

63e2b5bdbc6f2fc8b389d0a891e4bd849b1a989e
SHA256

de275559774e74fa99db42c993548b2d7b1d6d5b940058add009d0067f46f31c
SHA512

6a392800e11e7fac4e6871c35dc2f2e9652b28465e3d2602ef6aa19ec7698d299bdec1c2b554f5fcabe9420864699b5da6db0b2cabd1e0a43f83af61dfa6c34d
SSDEEP

12288:YXY/yXdimWkkB0BMyPJrOjr5No8G7tddG1/hdxug3vnS/Ekq7D9r0q96M88vircS:YXYKtiHtBkxGg8n1/nNbkGN596xiV

Score

N/A

Malware Config

Signatures

Files

de275559774e74fa99db42c993548b2d7b1d6d5b940058add009d0067f46f31c
.exe windows x86

5f0b5defc1cdcac0557e78e21a244ac3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
ReadConsoleA
GetStartupInfoW
InitializeCriticalSection
GetLastError
GetFileSize
CreateMutexA
FindResourceA
SetFileAttributesA
CloseHandle
GetCurrentDirectoryW
GetLocalTime
FormatMessageA
ReadFile
ReadConsoleA
LeaveCriticalSection
HeapCreate
lstrcatA
lstrcpyA
ReadConsoleA
IsBadStringPtrW

msi

MsiCloseHandle
MsiCloseAllHandles
MsiCreateRecord
MsiAdvertiseProductA

user32

wsprintfW
PostMessageW
GetWindowLongW
IsWindow
DispatchMessageA
PeekMessageW
SetFocus
LoadCursorW
IsCharLowerA
IsDialogMessageA
SetCursorPos
IsZoomed
GetWindowTextA

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 771KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 178B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5f0b5defc1cdcac0557e78e21a244ac3

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 704KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 771KB - Virtual size: 1.4MB

.text1 Size: 1024B - Virtual size: 263B

.data2 Size: 512B - Virtual size: 178B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 704KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 771KB - Virtual size: 1.4MB

.text1
Size: 1024B - Virtual size: 263B

.data2
Size: 512B - Virtual size: 178B