4bb6dac1cd0c68f2c04c71e30be6c933997cb4d2ead311cdb70bfa003da4440a

General

Target

4bb6dac1cd0c68f2c04c71e30be6c933997cb4d2ead311cdb70bfa003da4440a
Size

549KB
MD5

8b8f8aee7c6bbea3eae85729a38c12cc
SHA1

e15fbc4bac073d9a70cd34691ced55969d6ec81f
SHA256

4bb6dac1cd0c68f2c04c71e30be6c933997cb4d2ead311cdb70bfa003da4440a
SHA512

4b4b977f7b193244565a075adff1dcad2cb087caf96704a183be582813b17048798f1708027883615fe718405d9408dab8eec0bd1fbc90eea6ad293299741957
SSDEEP

12288:/J0B8ySEjwwyHVCIIl4av8kbuSm34mEk9uMWnskxj1dd25:/68yhwwysIIl4a7bjm34y9enZVA

Score

N/A

Malware Config

Signatures

Files

4bb6dac1cd0c68f2c04c71e30be6c933997cb4d2ead311cdb70bfa003da4440a
.exe windows x86

4aa29ec7fbd028e7512d151e3b2cdea4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetFileTime
GetCurrentDirectoryW
GetModuleHandleA
SetFileTime
FormatMessageW
GetFileSize
InitializeCriticalSection
CreateMutexA
GetLastError
lstrcatA
SetFileAttributesW
lstrcpyA
GetLocalTime
HeapCreate
LeaveCriticalSection
SetFileTime
GetStartupInfoW
FindResourceA
CloseHandle
ReadFile
IsBadStringPtrW

msi

MsiCloseAllHandles
MsiCreateRecord
MsiAdvertiseProductA
MsiCloseHandle

user32

LoadCursorW
SetFocus
GetWindowRect
PostMessageW
PeekMessageW
SetCursorPos
IsDialogMessageA
GetWindowTextA
IsWindow
wsprintfW
IsZoomed
DispatchMessageA
GetWindowLongW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 716KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 775KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 1024B - Virtual size: 211B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4aa29ec7fbd028e7512d151e3b2cdea4

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 716KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 775KB - Virtual size: 1.4MB

.data1 Size: 1024B - Virtual size: 211B

.data2 Size: 512B - Virtual size: 146B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 716KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 775KB - Virtual size: 1.4MB

.data1
Size: 1024B - Virtual size: 211B

.data2
Size: 512B - Virtual size: 146B