56cfe9ba5cff7b72a8d3f2636df767e41fdd5e4162c6f5dafa2d9f8f07232ece

General

Target

56cfe9ba5cff7b72a8d3f2636df767e41fdd5e4162c6f5dafa2d9f8f07232ece
Size

115KB
MD5

8357b78567483e283b5a3468fe830230
SHA1

eb8f50f36c377a24618defa4ad2e7a7d2225f1bb
SHA256

56cfe9ba5cff7b72a8d3f2636df767e41fdd5e4162c6f5dafa2d9f8f07232ece
SHA512

c7fcad7ead7005b453a149f74c8d3568b420a483339744cc80f645e41fbc9bfb8b91ac76fc784660e83028dd57e011f88f0b1bb6a331e1a00a8210f9ebf6b7a9
SSDEEP

3072:GJbOqQPCP1I9RfBbBXXR5zwewCLCk7wCR4GZXD:DP+1I9jtXBPwk4GN

Score

N/A

Malware Config

Signatures

Files

56cfe9ba5cff7b72a8d3f2636df767e41fdd5e4162c6f5dafa2d9f8f07232ece
.exe windows x86

eedff6cbb88e9797e9968aeef3afe91e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleW
CreateMutexA
IsValidLocale
ReadFile
FindResourceA
CloseHandle
FormatMessageA
GetStartupInfoA
WriteConsoleW
GetModuleHandleA
HeapCreate
GetFileTime
SetFileAttributesA
lstrcpyA
GetCurrentDirectoryW
GetFileSize
ReleaseMutex
IsBadStringPtrW
WriteConsoleW
lstrcpyW
GetLastError

msi

MsiAdvertiseProductA
MsiCloseAllHandles
MsiCreateRecord
MsiCloseHandle

user32

PostMessageW
SetCursorPos
IsZoomed
SetFocus
wsprintfW
IsDialogMessageA
IsWindow
GetWindowLongW
PeekMessageW
DispatchMessageA
LoadCursorW
IsCharLowerA
GetWindowTextA

apphelp

ApphelpCheckIME

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fedit
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qedit
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

eedff6cbb88e9797e9968aeef3afe91e

Headers

File Characteristics

Imports

kernel32

msi

user32

apphelp

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 20KB

.rsrc Size: 105KB - Virtual size: 104KB

.fedit Size: 1024B - Virtual size: 263B

.qedit Size: 512B - Virtual size: 224B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 20KB

.rsrc
Size: 105KB - Virtual size: 104KB

.fedit
Size: 1024B - Virtual size: 263B

.qedit
Size: 512B - Virtual size: 224B