2f9ec579c8686cd4ab5f17e4ce033c7ccd4745ecb2efb62a1be7329bdf9b0f30

General

Target

2f9ec579c8686cd4ab5f17e4ce033c7ccd4745ecb2efb62a1be7329bdf9b0f30
Size

122KB
MD5

38db6fd1379f809fbef6c4666e26f730
SHA1

0ae9bdc601ca8fdc43c76b55a6f2ea1e8ec69232
SHA256

2f9ec579c8686cd4ab5f17e4ce033c7ccd4745ecb2efb62a1be7329bdf9b0f30
SHA512

fb59ae78db232c7b7bfdbfb6b86ee844e470cb0a2401b19eb11708d3790cbdfcbcab08c385d1584d6d4c76dc15d21bed5333371a860b1199e606bf3513c7cf93
SSDEEP

3072:O0ktZMc5K4yV2pnMSxXcoDeJB6ESPc7Fm1OFgp:KDmgMCsoEBBFWp

Score

N/A

Malware Config

Signatures

Files

2f9ec579c8686cd4ab5f17e4ce033c7ccd4745ecb2efb62a1be7329bdf9b0f30
.exe windows x86

b4954ae975988637369eea74270254e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoW
GetLastError
ReadConsoleA
GetModuleHandleA
ReleaseMutex
lstrcpyW
ReadConsoleA
lstrcpyA
GetCurrentDirectoryW
GetFileSize
FindResourceA
IsValidLocale
HeapCreate
CloseHandle
SetFileAttributesA
GetFileTime
ReadConsoleA
IsBadStringPtrW
FormatMessageA
CreateMutexA
ReadFile

msi

MsiAdvertiseProductA
MsiCloseHandle
MsiCloseAllHandles
MsiCreateRecord

user32

SetFocus
IsDialogMessageA
wsprintfW
GetWindowLongW
PeekMessageW
IsWindow
SetCursorPos
GetWindowTextA
PostMessageW
LoadCursorW
IsZoomed
DispatchMessageA
IsCharLowerA

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4954ae975988637369eea74270254e8

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 111KB - Virtual size: 110KB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 224B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 111KB - Virtual size: 110KB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 224B