47dae8ab0de37d4dbefaeba24f808cd6c176501df92d44048b3f66389be9778c

General

Target

47dae8ab0de37d4dbefaeba24f808cd6c176501df92d44048b3f66389be9778c
Size

396KB
MD5

92b6e6f6ed56f128158f77efeff8ca60
SHA1

7b59eb28e6052f8ce81563a4ab6c1b2d04dd951f
SHA256

47dae8ab0de37d4dbefaeba24f808cd6c176501df92d44048b3f66389be9778c
SHA512

84491eec311c9b2698e0749e3dabf112e8d1fad37e1b055ce011b4b9142679463406a39fa75770933e6f0b90a5830d56d8a7b491d4692bf26669f67461875c15
SSDEEP

12288:QeGxhD5NOZ2i269yeJ6CCDFDT7YwmD5geVD:TKlgZ2Nm6CYf7YwmD5gu

Score

N/A

Malware Config

Signatures

Files

47dae8ab0de37d4dbefaeba24f808cd6c176501df92d44048b3f66389be9778c
.exe windows x86

450a763f98a7fd366aee5887c0d0db6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
SetFileAttributesA
ReadConsoleA
CloseHandle
CreateMutexA
GetCurrentDirectoryW
LeaveCriticalSection
InitializeCriticalSection
GetLastError
HeapCreate
GetLocalTime
ReadConsoleA
lstrcpyA
FormatMessageA
GetFileSize
IsBadStringPtrW
ReadFile
GetStartupInfoW
lstrcatA
ReadConsoleA
FindResourceA

msi

MsiCloseAllHandles
MsiAdvertiseProductA
MsiCloseHandle
MsiCreateRecord

user32

IsCharLowerA
IsWindow
IsZoomed
SetCursorPos
LoadCursorW
GetWindowLongW
IsDialogMessageA
DispatchMessageA
PeekMessageW
SetFocus
wsprintfW
PostMessageW
GetWindowTextA

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 381KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 178B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

450a763f98a7fd366aee5887c0d0db6c

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 256KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 381KB - Virtual size: 632KB

.text1 Size: 1024B - Virtual size: 263B

.data2 Size: 512B - Virtual size: 178B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 256KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 381KB - Virtual size: 632KB

.text1
Size: 1024B - Virtual size: 263B

.data2
Size: 512B - Virtual size: 178B