c5f6c13b0d7eecca5a2cfbb629b46143edf66462ad0ec13caabcdb5b9f231050

General

Target

c5f6c13b0d7eecca5a2cfbb629b46143edf66462ad0ec13caabcdb5b9f231050
Size

67KB
MD5

83f8dc57813a42d72849b7a8a8833c20
SHA1

5ac8c82981d26c2a4b5bce395db27565387c7979
SHA256

c5f6c13b0d7eecca5a2cfbb629b46143edf66462ad0ec13caabcdb5b9f231050
SHA512

1539cd539b886a2c05460c43493bdf26e3804cfee0309b7381f9a495d032e4a236207154d436fe5517aaa296e344d9e4b2e112aeee93fed1a80bc4d71d861450
SSDEEP

1536:ve1Gq7y3DykdpiVFIkjODHJ6UFJVq4PAtbG9vI:G1n+3DykPIdjaJz5q4wb9

Score

N/A

Malware Config

Signatures

Files

c5f6c13b0d7eecca5a2cfbb629b46143edf66462ad0ec13caabcdb5b9f231050
.exe windows x86

34e71ad44b9b998c150437db190db518

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleW
GetLastError
GetStartupInfoA
GetFileTime
lstrlenW
FindResourceA
FormatMessageA
IsValidLocale
GetModuleHandleA
SetPriorityClass
GetCurrentDirectoryA
GetFileAttributesA
lstrcpyW
ReleaseMutex
HeapCreate
IsBadStringPtrA
GetFileSize
WriteConsoleW
CloseHandle
ReadFile
WriteConsoleW

msftedit

RichComboBoxWndProc
RichListBoxWndProc
RichEditWndProc
SetCustomTextOutHandlerEx

clbcatq

ComPlusMigrate
ComPlusMigrate
SetupOpen
SetupOpen
CheckMemoryGates
DllGetClassObject
CheckMemoryGates
SetSetupSave
DllGetClassObject
CheckMemoryGates
SetupOpen
SetSetupSave
ComPlusMigrate

dsprop

CheckADsError

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 263B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qedit
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34e71ad44b9b998c150437db190db518

Headers

File Characteristics

Imports

kernel32

msftedit

clbcatq

dsprop

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 56KB - Virtual size: 55KB

.adata Size: 1024B - Virtual size: 263B

.qedit Size: 512B - Virtual size: 256B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 56KB - Virtual size: 55KB

.adata
Size: 1024B - Virtual size: 263B

.qedit
Size: 512B - Virtual size: 256B