05dacd6071bb407e8045fd51c459a8ff6e90473df3cd6a05c5913cd3ad571984

General

Target

05dacd6071bb407e8045fd51c459a8ff6e90473df3cd6a05c5913cd3ad571984
Size

114KB
MD5

808760ca56cb8ad51f7ae2af3e3fee10
SHA1

33126b180ede38e45b386d68ebdb853a9a32a59e
SHA256

05dacd6071bb407e8045fd51c459a8ff6e90473df3cd6a05c5913cd3ad571984
SHA512

e06932969349ad551caa34ab4b26d0692fbde82f8cd950f5c55c258640f29845758e333f89da0a42831105835ac66a8fbe98576215d8e50812b4946daffc9b32
SSDEEP

3072:O+AH8KeS3lCy2qxvBepC67lbtXBJzHHTp:OSAlCyLxMCWbhBJzH

Score

N/A

Malware Config

Signatures

Files

05dacd6071bb407e8045fd51c459a8ff6e90473df3cd6a05c5913cd3ad571984
.exe windows x86

c06178c21c02ddcf3c810b5dababc078

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateMutexA
GetFileTime
WriteConsoleW
ReleaseMutex
SetFileAttributesA
IsValidLocale
ReadFile
GetCurrentDirectoryW
FormatMessageA
WriteConsoleW
GetModuleHandleA
GetFileSize
lstrcpyW
GetLastError
HeapCreate
IsBadStringPtrW
GetStartupInfoA
CloseHandle
FindResourceA
WriteConsoleW
lstrcpyA

msi

MsiCreateRecord
MsiAdvertiseProductA
MsiCloseHandle
MsiCloseAllHandles

user32

GetWindowLongW
IsZoomed
LoadCursorW
IsWindow
SetCursorPos
DispatchMessageA
IsDialogMessageA
GetWindowTextA
wsprintfW
PostMessageW
PeekMessageW
SetFocus
IsCharLowerA

wldap32

ldap_add

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c06178c21c02ddcf3c810b5dababc078

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 20KB

.rsrc Size: 104KB - Virtual size: 103KB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 224B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 20KB

.rsrc
Size: 104KB - Virtual size: 103KB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 224B