c2ef814e4df6401aa694afa4e2bac54e12a796641660032f3b2b4e5615cf50d2

General

Target

c2ef814e4df6401aa694afa4e2bac54e12a796641660032f3b2b4e5615cf50d2
Size

119KB
MD5

a0f3ccefe9bb181c80596e9156de9be0
SHA1

ffeea29e71d325829816faba8f5f2158c3be9353
SHA256

c2ef814e4df6401aa694afa4e2bac54e12a796641660032f3b2b4e5615cf50d2
SHA512

228083e28f0ba6db9e1e7c286a2b4bc4bad27579124e6784b76e9f3081b3ca3e96965a96eb087f5717a5975076eabe03f1a1d3d98ad3bbd20a0dda5397553bba
SSDEEP

3072:1NDv/LUXTHKY54IxUTU3Oh4TIOP3rJrvPJxd:LLUXTqY5HxoU3e4TjPBfd

Score

N/A

Malware Config

Signatures

Files

c2ef814e4df6401aa694afa4e2bac54e12a796641660032f3b2b4e5615cf50d2
.exe windows x86

b2d8b94a121a25a36ce3a039b2cf576e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsBadStringPtrW
lstrcpyA
InitializeCriticalSection
CreateMutexA
FindResourceA
HeapCreate
FormatMessageA
GetFileSize
CloseHandle
GetCurrentDirectoryW
lstrcatA
ReadConsoleA
GetLastError
ReadConsoleA
ReadFile
GetFileTime
SetFileAttributesA
IsValidLocale
GetModuleHandleA
GetStartupInfoW
ReadConsoleA

msi

MsiCloseAllHandles
MsiAdvertiseProductA
MsiCreateRecord
MsiCloseHandle

user32

GetWindowLongW
IsWindow
SetFocus
IsCharLowerA
IsZoomed
SetCursorPos
GetWindowTextA
LoadCursorW
PeekMessageW
IsDialogMessageA
wsprintfW
PostMessageW
DispatchMessageA

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2d8b94a121a25a36ce3a039b2cf576e

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 105KB - Virtual size: 104KB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 208B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 105KB - Virtual size: 104KB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 208B