fa0a2c0dea7b8eb2dece42aaa427d3925b8945fa52e1e6eb27619c5f3c25a575

General

Target

fa0a2c0dea7b8eb2dece42aaa427d3925b8945fa52e1e6eb27619c5f3c25a575
Size

396KB
MD5

3183f0ac5c67799e58145478f71fb410
SHA1

8ec2ada3eeeae1edae29ecb47d12523643ed68bf
SHA256

fa0a2c0dea7b8eb2dece42aaa427d3925b8945fa52e1e6eb27619c5f3c25a575
SHA512

04fd4357a0a7642f946b082c685ccd8d53c2ad22c972a404a5dc22efc8365d38c0f5764cbf6e680df1b801266d198442eeab9353631d1cd7e813b9f0a1a1fe9d
SSDEEP

12288:jU0eGxhD5NOZ2i269yeJ6CCDFDT7YwmD5geVR:qKlgZ2Nm6CYf7YwmD5gQ

Score

N/A

Malware Config

Signatures

Files

fa0a2c0dea7b8eb2dece42aaa427d3925b8945fa52e1e6eb27619c5f3c25a575
.exe windows x86

d4932052ff018a265156b5bc2ee18feb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FormatMessageW
lstrcpyA
GetStartupInfoW
GetLocalTime
InitializeCriticalSection
SetFileAttributesW
CreateMutexA
LeaveCriticalSection
SetFileTime
SetFileTime
FindResourceA
GetCurrentDirectoryW
SetFileTime
ReadFile
IsBadStringPtrW
GetModuleHandleA
GetLastError
CloseHandle
lstrcatA
GetFileSize
HeapCreate

msi

MsiCloseAllHandles
MsiCreateRecord
MsiCloseHandle
MsiAdvertiseProductA

user32

GetWindowRect
IsZoomed
GetWindowLongW
IsWindow
wsprintfW
PostMessageW
GetWindowTextA
SetCursorPos
IsDialogMessageA
PeekMessageW
SetFocus
DispatchMessageA
LoadCursorW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 381KB - Virtual size: 640KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 1024B - Virtual size: 211B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d4932052ff018a265156b5bc2ee18feb

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 264KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 381KB - Virtual size: 640KB

.data1 Size: 1024B - Virtual size: 211B

.data2 Size: 512B - Virtual size: 146B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 264KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 381KB - Virtual size: 640KB

.data1
Size: 1024B - Virtual size: 211B

.data2
Size: 512B - Virtual size: 146B