ccf0eaf8b8b04261ffa9008ae0df604b4b17d24c49d0029e0fe52946577bab57

General

Target

ccf0eaf8b8b04261ffa9008ae0df604b4b17d24c49d0029e0fe52946577bab57
Size

34KB
MD5

f32784a4590346d525eabfc2890ae9c0
SHA1

93b2b995db09783634e7000e5e9f57fc85a15f63
SHA256

ccf0eaf8b8b04261ffa9008ae0df604b4b17d24c49d0029e0fe52946577bab57
SHA512

d7ef32acfb332ca7f8df5da91997d55c7a5a5810a95600dc45410ca6bb36e18ffe3618d2594c2417215980ac2267d65f0989f3a03d980f6e57b1d0bb64be0f4c
SSDEEP

384:31ZNX3LHDwViSoea78wobTpAJHoClCR5:lZNX7jQfoeqdUT

Score

N/A

Malware Config

Signatures

Files

ccf0eaf8b8b04261ffa9008ae0df604b4b17d24c49d0029e0fe52946577bab57
.exe windows x86

3c8d74b21dc51c882d96c12fffbd033d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDiskFreeSpaceA
GetACP
GetCurrentThread
GetDriveTypeA
GetEnvironmentStringsA
GetPrivateProfileSectionA
IsValidCodePage
GetProcAddress
SearchPathA
CreateFileA
GetDateFormatW
Beep
ExitThread

shell32

SHGetSpecialFolderPathA

lz32

LZRead
LZInit

esent

JetGetCounter

msi

MsiDoActionA
MsiDoActionW
MsiEnableLogA
MsiEnableLogW
MsiEnableUIPreview
MsiEnumClientsA
MsiEnumClientsW
MsiEnumComponentCostsA
MsiEnumComponentsA
MsiEnumComponentsW
MsiEnumFeaturesA
MsiEnumFeaturesW
MsiEnumPatchesA
MsiEnumPatchesExA
MsiEnumPatchesExW
MsiEnumPatchesW
MsiEnumProductsA
MsiEnumProductsExA
MsiEnumProductsExW
MsiEnumProductsW
MsiFormatRecordA
MsiFormatRecordW
MsiGetActiveDatabase
MsiGetComponentPathA
MsiGetComponentPathW
MsiGetComponentStateA
MsiGetComponentStateW
MsiGetDatabaseState
MsiGetFeatureCostA
MsiGetFeatureCostW
MsiGetFeatureInfoA

Sections

Size: 1024B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.neolit
Size: 6KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbb
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.css
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dss
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3c8d74b21dc51c882d96c12fffbd033d

Headers

File Characteristics

Imports

kernel32

shell32

lz32

esent

msi

Sections

Size: 1024B - Virtual size: 20KB

.neolit Size: 6KB - Virtual size: 82KB

.bbb Size: 21KB - Virtual size: 24KB

.css Size: 2KB - Virtual size: 2KB

.dss Size: 2KB - Virtual size: 2KB

.neolit
Size: 6KB - Virtual size: 82KB

.bbb
Size: 21KB - Virtual size: 24KB

.css
Size: 2KB - Virtual size: 2KB

.dss
Size: 2KB - Virtual size: 2KB