3f155904c5e0bb8e583be2eeeea95d2ed4b20ddb910d90a09f4e4536a56a2baf

General

Target

3f155904c5e0bb8e583be2eeeea95d2ed4b20ddb910d90a09f4e4536a56a2baf
Size

391KB
MD5

399bcc2b0a14d161739580a1a5ff4400
SHA1

cb5306631be726654be5e08e21ba01694b1db49c
SHA256

3f155904c5e0bb8e583be2eeeea95d2ed4b20ddb910d90a09f4e4536a56a2baf
SHA512

8e0914b1fe6fc862aecbde10f830806833c34ae6bdc6422967100b41e00d644eec5efa08430b9fd723e295c521899feaac3c655295460ecc10052ecfcd339053
SSDEEP

12288:JwOgeGxhD5NOZ2i269yeJ6CCDFDT7YwmD5geV:qOjKlgZ2Nm6CYf7YwmD5g

Score

N/A

Malware Config

Signatures

Files

3f155904c5e0bb8e583be2eeeea95d2ed4b20ddb910d90a09f4e4536a56a2baf
.exe windows x86

38c448d5f7ca171859d6d9fac09b0f5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsBadStringPtrW
FormatMessageA
ReadConsoleA
GetFileTime
ReadFile
ReleaseMutex
IsValidLocale
FindResourceA
HeapCreate
GetModuleHandleA
GetLastError
lstrcpyA
ReadConsoleA
GetCurrentDirectoryW
CreateMutexA
ReadConsoleA
GetStartupInfoW
SetFileAttributesA
lstrcpyW
CloseHandle
GetFileSize

msi

MsiCloseHandle
MsiCloseAllHandles
MsiCreateRecord
MsiAdvertiseProductA

user32

IsZoomed
PeekMessageW
SetCursorPos
GetWindowTextA
PostMessageW
DispatchMessageA
wsprintfW
IsWindow
LoadCursorW
IsCharLowerA
GetWindowLongW
SetFocus
IsDialogMessageA

wldap32

ldap_add

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 381KB - Virtual size: 860KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

38c448d5f7ca171859d6d9fac09b0f5c

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 20KB

.rsrc Size: 381KB - Virtual size: 860KB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 224B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 20KB

.rsrc
Size: 381KB - Virtual size: 860KB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 224B