d802974414ee46dd9c526fdc7605b14e09c999d3e5313de19a1ea0d20d035e25

General

Target

d802974414ee46dd9c526fdc7605b14e09c999d3e5313de19a1ea0d20d035e25
Size

311KB
MD5

837dd3520a664b46dd0fb6b389588000
SHA1

3dd4049a4cdfa84abc30c531f0be33ca31d0c85c
SHA256

d802974414ee46dd9c526fdc7605b14e09c999d3e5313de19a1ea0d20d035e25
SHA512

0fbc57e3e9b4635e8e0e9fc39dfe3bf0dd5abea3d430d2e4310c694e66cfb532101ff3485d2b3ea8e65fda2f397274b2ba98123d9c2c9b9a83fc58b7faf480ac
SSDEEP

6144:gJpGb7gAKxnYHPiZnQanijjV70VPSwIPRNn1g0L8Ma1jvSahceVkSYhZpTsHR9Ra:M0nRKxnfmj3V7WIvn1tJy6a6eVkSsT88

Score

N/A

Malware Config

Signatures

Files

d802974414ee46dd9c526fdc7605b14e09c999d3e5313de19a1ea0d20d035e25
.exe windows x86

3ab86aec9737e36c6974273af7fb252a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FormatMessageW
lstrcatA
GetFileSize
lstrcpyA
GetModuleHandleA
LeaveCriticalSection
FindResourceA
CreateMutexW
SetFileAttributesW
SetFileTime
SetFileTime
HeapCreate
SetFileTime
CloseHandle
IsBadWritePtr
GetModuleHandleW
GetLocalTime
GetStartupInfoW
InitializeCriticalSection
ReadFile
GetLastError

msi

MsiCloseAllHandles
MsiCreateRecord
MsiCloseHandle
MsiAdvertiseProductA

user32

GetWindowRect
LoadCursorW
IsWindow
GetWindowTextA
SetFocus
PeekMessageW
IsDialogMessageA
IsZoomed
wsprintfW
GetWindowLongW
SetCursorPos
PostMessageW
DispatchMessageA

wldap32

ldap_add

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rich
Size: 1KB - Virtual size: 193B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 129B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3ab86aec9737e36c6974273af7fb252a

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 293KB - Virtual size: 293KB

.rich Size: 1KB - Virtual size: 193B

.data2 Size: 512B - Virtual size: 129B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 293KB - Virtual size: 293KB

.rich
Size: 1KB - Virtual size: 193B

.data2
Size: 512B - Virtual size: 129B