12ae82cecf086d856a7f8614f13f2e80196a9ba686bf24b401228da3a4a71d42

General

Target

12ae82cecf086d856a7f8614f13f2e80196a9ba686bf24b401228da3a4a71d42
Size

777KB
MD5

10bad13534359de1bc2c2f1ad9b07261
SHA1

6d25e6af9059d314b73d59d5f4cb30252a501a3d
SHA256

12ae82cecf086d856a7f8614f13f2e80196a9ba686bf24b401228da3a4a71d42
SHA512

e1d38c5461ef656f7ea6ed5702bce7f8df092e301c4a8d32918ed4e371109d0f9f7a2123c0442bdcc9792a6b989e29c70efb012039576fd5262a317aad697791
SSDEEP

24576:OL82+aE7RliZ58fopAgjkgFMILs6xe6dk:Og77XiWoegjkiLs6Egk

Score

N/A

Malware Config

Signatures

Files

12ae82cecf086d856a7f8614f13f2e80196a9ba686bf24b401228da3a4a71d42
.exe windows x86

ddd8f8fbd464e2ca5f590de6d9083c3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoA
WriteConsoleW
GetModuleHandleA
ReleaseMutex
WriteConsoleW
lstrcpyW
GetFileTime
FormatMessageA
HeapCreate
IsBadStringPtrA
FindResourceA
lstrlenW
GetCurrentDirectoryA
SetPriorityClass
IsValidLocale
CloseHandle
ReadFile
GetLastError
WriteConsoleW
GetFileAttributesA
GetFileSize

msftedit

RichListBoxWndProc
RichEditWndProc
SetCustomTextOutHandlerEx
RichComboBoxWndProc

clbcatq

SetSetupSave
SetSetupSave
CheckMemoryGates
DllGetClassObject
ComPlusMigrate
SetupOpen
ComPlusMigrate
SetupOpen
CheckMemoryGates
ComPlusMigrate
DllGetClassObject
CheckMemoryGates
SetupOpen

dsprop

CheckADsError

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 766KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 49B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qedit
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ddd8f8fbd464e2ca5f590de6d9083c3a

Headers

File Characteristics

Imports

kernel32

msftedit

clbcatq

dsprop

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 766KB - Virtual size: 2.1MB

.adata Size: 1024B - Virtual size: 49B

.qedit Size: 512B - Virtual size: 256B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 766KB - Virtual size: 2.1MB

.adata
Size: 1024B - Virtual size: 49B

.qedit
Size: 512B - Virtual size: 256B