1cd66253ffbff87895f3a4d7c428937e99dbfb8b3647c2a71cfab76f02315cbe

General

Target

1cd66253ffbff87895f3a4d7c428937e99dbfb8b3647c2a71cfab76f02315cbe
Size

777KB
MD5

101b505f25a72c4f63999a2606e9b973
SHA1

87873382d7cfc1fbe41c437a1ece63de7025d512
SHA256

1cd66253ffbff87895f3a4d7c428937e99dbfb8b3647c2a71cfab76f02315cbe
SHA512

ca7d55958da6a3aa8bf73d2b9ccc39c58d35298b67c1011f21da658f09582115470ecedd3094c59c2b1f6ccb0252353a2c9dfbd7d7a75a7c279def4f38a635a8
SSDEEP

12288:kjUHOHwjBgUob9dLf+Cn/kBwtxufB37FJnP6muJ7c7rDiMQCsAnFaGPcN:bHOqKb9dLfNnDtazPL8MDiMLaGPE

Score

N/A

Malware Config

Signatures

Files

1cd66253ffbff87895f3a4d7c428937e99dbfb8b3647c2a71cfab76f02315cbe
.exe windows x86

e05b188f57f11a74d75bc4a944900ddf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FormatMessageA
IsBadStringPtrW
IsValidLocale
SetFileAttributesA
GetFileSize
GetCurrentDirectoryW
CloseHandle
HeapCreate
CreateMutexA
WriteConsoleW
ReleaseMutex
GetLastError
GetModuleHandleA
ReadFile
lstrcpyA
FindResourceA
WriteConsoleW
lstrcpyW
GetFileTime
GetStartupInfoA
WriteConsoleW

msi

MsiAdvertiseProductA
MsiCloseAllHandles
MsiCreateRecord
MsiCloseHandle

user32

GetWindowLongW
IsDialogMessageA
GetWindowTextA
PostMessageW
SetFocus
PeekMessageW
IsCharLowerA
SetCursorPos
IsZoomed
LoadCursorW
DispatchMessageA
IsWindow
wsprintfW

ntshrui

IsPathSharedA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 766KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qedit
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e05b188f57f11a74d75bc4a944900ddf

Headers

File Characteristics

Imports

kernel32

msi

user32

ntshrui

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 766KB - Virtual size: 2.1MB

.adata Size: 1024B - Virtual size: 263B

.qedit Size: 512B - Virtual size: 224B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 766KB - Virtual size: 2.1MB

.adata
Size: 1024B - Virtual size: 263B

.qedit
Size: 512B - Virtual size: 224B