2adc5adccf78b1245f2b911215ec516bdde05ca612a1f0c51b79b21dd8b2b616

General

Target

2adc5adccf78b1245f2b911215ec516bdde05ca612a1f0c51b79b21dd8b2b616
Size

116KB
MD5

44c46abe918c35c199ce16afc60c17b0
SHA1

7969fe786d8a78c8b9f8d9e4f61ac2d3b4871c11
SHA256

2adc5adccf78b1245f2b911215ec516bdde05ca612a1f0c51b79b21dd8b2b616
SHA512

e27cd11038911a75c29dcadd09eaa67d198f056619621aefe4dff71932bf4a1d6e581aae4cee7dd5e19103a44a4f7467e25b0cc82a1bc267bc56cffcc94850a7
SSDEEP

1536:g1lWLkPQB8qDg0KVrmLE5NIlSY+A37feaCMJDmYsLIb4PvYqHB/AEq:EPQ3DJKV7NIlSDADeak7dJHB/At

Score

N/A

Malware Config

Signatures

Files

2adc5adccf78b1245f2b911215ec516bdde05ca612a1f0c51b79b21dd8b2b616
.exe windows x86

32399b414719f36fe88e9509e79874d6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegGetValueW
RegOpenKeyExW

wsock32

gethostname
WSAStartup

wldap32

ord13
ord140
ord224
ord36
ord26
ord133
ord147
ord73
ord88
ord145
ord208
ord41
ord27

activeds

ord3
ord7

kernel32

GetACP
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
WideCharToMultiByte
lstrlenA
LoadLibraryW
GetVersionExA
GetModuleHandleW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetConsoleCP
SetThreadUILanguage
FormatMessageW
InterlockedExchange
GetSystemTimeAsFileTime
GetLocaleInfoA
GetThreadLocale
GetVersionExW
MultiByteToWideChar
RaiseException
InitializeCriticalSection
DeleteCriticalSection
LocalFree

msvcrt

wcslen
_iob
_wcsicmp
setlocale
_wgetenv
??2@YAPAXI@Z
_itow
wcsncat
system
_exit
_XcptFilter
_cexit
exit
__initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__dllonexit
_onexit
_controlfp
fclose
_wfopen
free
fwprintf
printf
malloc
wcsncpy
wcschr
_vsnwprintf
_vsnprintf
_c_exit
memset
_except_handler3

oleaut32

VariantClear
SysAllocString
SysFreeString
VariantInit

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32399b414719f36fe88e9509e79874d6

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

wsock32

wldap32

activeds

kernel32

msvcrt

oleaut32

ole32

Sections

.text Size: 23KB - Virtual size: 23KB

.data Size: 11KB - Virtual size: 12KB

.rsrc Size: 80KB - Virtual size: 80KB

.text
Size: 23KB - Virtual size: 23KB

.data
Size: 11KB - Virtual size: 12KB

.rsrc
Size: 80KB - Virtual size: 80KB