9213f3c947c9956535058cd505feacaeb9f1ff30a3fbadfbe90a53c7120d4047

General

Target

9213f3c947c9956535058cd505feacaeb9f1ff30a3fbadfbe90a53c7120d4047
Size

114KB
MD5

844c594f3db38237b9e3f3b07e6b9510
SHA1

3b1491cb6e49e3f5742f91c5dd558e3b57dfe59f
SHA256

9213f3c947c9956535058cd505feacaeb9f1ff30a3fbadfbe90a53c7120d4047
SHA512

d235cbb9f042d1b23963e92c4b414e06cbf5af104065882b991afd0379945138da02c02ebb1c54a63c526a95b4fa599b67d4fc2fa7bb92f80b4964daea8570e3
SSDEEP

3072:iwQNW43PE+xp8ZUdWcyiWf6DpdBtLflkL+Gw09t:2JxuxqWSddBtLf6Ld

Score

N/A

Malware Config

Signatures

Files

9213f3c947c9956535058cd505feacaeb9f1ff30a3fbadfbe90a53c7120d4047
.exe windows x86

9d6ef6146edbaf0055579e18e622adae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleA
HeapCreate
ReadFile
ReadConsoleA
SetFileAttributesA
IsBadStringPtrW
GetFileTime
GetStartupInfoW
GetLastError
GetCurrentDirectoryW
ReadConsoleA
GetModuleHandleA
CloseHandle
FindResourceA
GetFileSize
lstrcpyA
FormatMessageA
IsValidLocale
ReleaseMutex
lstrcpyW
CreateMutexA

msi

MsiAdvertiseProductA
MsiCloseHandle
MsiCreateRecord
MsiCloseAllHandles

user32

wsprintfW
IsCharLowerA
GetWindowLongW
PeekMessageW
GetWindowTextA
IsDialogMessageA
SetFocus
DispatchMessageA
LoadCursorW
PostMessageW
IsZoomed
SetCursorPos
IsWindow

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9d6ef6146edbaf0055579e18e622adae

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 20KB

.rsrc Size: 103KB - Virtual size: 103KB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 224B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 20KB

.rsrc
Size: 103KB - Virtual size: 103KB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 224B