851f0a99ab332144ddc7dbc81af6e5d37f8cc75debfd99f23c61ccef5bfb7c7d

Sharing

Copy URL Twitter E-mail

General

Target

851f0a99ab332144ddc7dbc81af6e5d37f8cc75debfd99f23c61ccef5bfb7c7d
Size

45KB
MD5

8eeca7bf0312dc6565c4e92a1a3a28c9
SHA1

83387a56f909fe39602465c00eab39f9ca25d593
SHA256

851f0a99ab332144ddc7dbc81af6e5d37f8cc75debfd99f23c61ccef5bfb7c7d
SHA512

b5927256c9a21b5e4d135d43e743a305fee780692871868a10de1c2eb5a7989dbe792705c87bcd74e8493d33555b2fc40c3f47b445f73457a8afff10abd06774
SSDEEP

768:MvP6mkXfMTR+T9yjOlDyl5leNDo+3kQgtnKBHoFIYzrcZU0OaQq0ZX25TP6ed2YH:i6PXfaRU9yjO988UQgJS9Yzr8z5Td72s

Score

N/A

Malware Config

Signatures

Files

851f0a99ab332144ddc7dbc81af6e5d37f8cc75debfd99f23c61ccef5bfb7c7d
.exe windows x86

f7e068917880dba7dd054cc32783b5f0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

occache

RemoveExpiredControls
GetControlDependentFile
GetControlInfo
ReleaseControlHandle
FindControlClose
FindNextControl
SweepControlsByLastAccessDate
IsModuleRemovable

kernel32

CloseHandle
VDMOperationStarted
SetFilePointerEx
GlobalMemoryStatus
SetLastError
HeapCreate
HeapLock
LoadLibraryA
GetCurrencyFormatW
WriteConsoleOutputA
GetModuleFileNameA
GetProcAddress
MapUserPhysicalPagesScatter
MultiByteToWideChar
GlobalFindAtomW
CompareStringA
GetComputerNameA
MapViewOfFile

wldap32

ldap_dn2ufnA
ldap_create_vlv_controlA
ldap_sasl_bind_sA
ldap_search
ldap_next_reference
ldap_search_ext
ldap_get_valuesA
ldap_get_valuesW
ldap_compare_ext_s
ldap_initA
ldap_delete_ext_sW
ldap_modify_extA
ldap_delete_extA
ldap_explode_dnA
ldap_sslinitA
ldap_delete_s

psapi

QueryWorkingSet
GetModuleFileNameExW
EnumPageFilesW
GetDeviceDriverFileNameW

msvcrt

__p__commode
__set_app_type
exit
__getmainargs

ufat

?SearchForDirEntry@FATDIR@@QAEPAXPBVWSTRING@@@Z
??1CLUSTER_CHAIN@@UAE@XZ
?QueryEaSetClusterNumber@EA_HEADER@@QBEGG@Z
?AllocChain@FAT@@QAEKKPAK@Z
?Initialize@CLUSTER_CHAIN@@QAEEPAVMEM@@PAVLOG_IO_DP_DRIVE@@PAVFAT_SA@@PBVFAT@@KK@Z
?Initialize@REAL_FAT_SA@@UAEEPAVLOG_IO_DP_DRIVE@@PAVMESSAGE@@E@Z

oleaut32

VarDecFromUI4
VarBoolFromI8
VarUI8FromI1
SysReAllocString

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7e068917880dba7dd054cc32783b5f0

Headers

DLL Characteristics

File Characteristics

Imports

occache

kernel32

wldap32

psapi

msvcrt

ufat

oleaut32

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 11KB - Virtual size: 10KB