c828917b647f89f0a04821116ee240a627997d54c151fe341702ba171e2a1dca

General

Target

c828917b647f89f0a04821116ee240a627997d54c151fe341702ba171e2a1dca
Size

790KB
MD5

09af78f75bc05168eb79ff4503070148
SHA1

8f9f9f434a00ec38149c4e617d3a608dee880614
SHA256

c828917b647f89f0a04821116ee240a627997d54c151fe341702ba171e2a1dca
SHA512

a5b695b18adc9811a719b757352e308f4c5ca23c7be09963ec6544e5518c6e10ace8983c63a7579c1348699953da674aa4b89ca65dd5ac43db0e95abf0d2d402
SSDEEP

12288:x7VH8tf7xmZ1O5b/ew7r+fpnShRLsUqSgUYL8j1RLItH9K8n3QjS4AfDYQBQDd:x7J8sOL7CnSTsUqSgHmIx9K8ngWXfD9

Score

N/A

Malware Config

Signatures

Files

c828917b647f89f0a04821116ee240a627997d54c151fe341702ba171e2a1dca
.exe windows x86

26cab787437eaf0018039a7601727cd9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcatA
GetStartupInfoW
GetLocalTime
CloseHandle
lstrcpyA
IsBadStringPtrW
FormatMessageA
LeaveCriticalSection
GetCurrentDirectoryW
GetFileSize
InitializeCriticalSection
SetFileAttributesA
HeapCreate
CreateMutexA
GetModuleHandleA
ReadConsoleA
ReadConsoleA
GetLastError
ReadConsoleA
FindResourceA
ReadFile

msi

MsiCloseAllHandles
MsiAdvertiseProductA
MsiCreateRecord
MsiCloseHandle

user32

PostMessageW
PeekMessageW
SetFocus
IsCharLowerA
IsZoomed
IsDialogMessageA
wsprintfW
IsWindow
LoadCursorW
DispatchMessageA
GetWindowLongW
GetWindowTextA
SetCursorPos

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 775KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text1
Size: 1024B - Virtual size: 241B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 178B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

26cab787437eaf0018039a7601727cd9

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 708KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 775KB - Virtual size: 1.4MB

.text1 Size: 1024B - Virtual size: 241B

.data2 Size: 512B - Virtual size: 178B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 708KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 775KB - Virtual size: 1.4MB

.text1
Size: 1024B - Virtual size: 241B

.data2
Size: 512B - Virtual size: 178B