b088bb26c9ec473390bcb082da95c9ac3a85cd00a5a79d851e629ab6765bf948

General

Target

b088bb26c9ec473390bcb082da95c9ac3a85cd00a5a79d851e629ab6765bf948
Size

304KB
MD5

6db723960c30ccc4a815523621afca20
SHA1

a76d774cd0286295b3ca18871be44e0a54094591
SHA256

b088bb26c9ec473390bcb082da95c9ac3a85cd00a5a79d851e629ab6765bf948
SHA512

906f38a901358228b3d086ff247b843e18f732b3529eacae4147ce3b70b4178600491c721b39dd83a1c268218c6c1c2dde85d17a70787205fffde6402c414523
SSDEEP

6144:3Ugs4fcP+wbqVcJz6rWIwxzXkW4Gv0RlZAYhqnvEvTKCh2dabgrRZBTMe5snAhzU:3vZGJb0cJz64z6GYMYhqvEO22daU1gMc

Score

N/A

Malware Config

Signatures

Files

b088bb26c9ec473390bcb082da95c9ac3a85cd00a5a79d851e629ab6765bf948
.exe windows x86

0b6d50f50c076c61800f4d0e3ba98edf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleA
ReadConsoleA
ReadFile
GetStartupInfoW
FormatMessageA
SetFileAttributesA
ReadConsoleA
CreateMutexA
GetFileTime
IsValidLocale
ReleaseMutex
CloseHandle
GetModuleHandleA
IsBadStringPtrW
HeapCreate
GetCurrentDirectoryW
lstrcpyA
GetFileSize
GetLastError
lstrcpyW
FindResourceA

msi

MsiCreateRecord
MsiCloseHandle
MsiAdvertiseProductA
MsiCloseAllHandles

user32

IsZoomed
GetWindowTextA
PostMessageW
IsWindow
IsCharLowerA
SetCursorPos
DispatchMessageA
SetFocus
IsDialogMessageA
wsprintfW
LoadCursorW
GetWindowLongW
PeekMessageW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0b6d50f50c076c61800f4d0e3ba98edf

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 20KB

.rsrc Size: 293KB - Virtual size: 293KB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 224B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 20KB

.rsrc
Size: 293KB - Virtual size: 293KB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 224B