ec6ee8874dc54940d691b6541b099036274965997972d39249feb3bca280e0ae

General

Target

ec6ee8874dc54940d691b6541b099036274965997972d39249feb3bca280e0ae
Size

790KB
MD5

0ea6bedde8733fb53679a6bb4f96ba70
SHA1

fd531a7c5eb2520bfa78058477869b848ec312d4
SHA256

ec6ee8874dc54940d691b6541b099036274965997972d39249feb3bca280e0ae
SHA512

4418cfa1bbe618648842fb5b9dbbb56cb1af891093e29f15c037e43ad75f8b39b64c5979794043e2b0a9ac05f71e7eecccd9483d217c40c335097228d757fecc
SSDEEP

24576:ngLwB2WSM3ReN4M2r2gjcyHVpnbdY7PuTIZZJ7NJ7:g9WB3E+Hcy/ubuEZTn

Score

N/A

Malware Config

Signatures

Files

ec6ee8874dc54940d691b6541b099036274965997972d39249feb3bca280e0ae
.exe windows x86

5614c30097cb8ac3c94adc7c7acebd1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoW
SetFileTime
SetFileAttributesW
ReadFile
GetFileSize
SetFileTime
LeaveCriticalSection
lstrcatA
CloseHandle
lstrcpyA
SetFileTime
InitializeCriticalSection
HeapCreate
GetModuleHandleA
CreateMutexA
GetLocalTime
FormatMessageA
GetLastError
GetCurrentDirectoryW
FindResourceA
IsBadStringPtrW

msi

MsiAdvertiseProductA
MsiCloseHandle
MsiCreateRecord
MsiCloseAllHandles

user32

GetWindowRect
PeekMessageW
GetWindowTextA
IsDialogMessageA
SetFocus
LoadCursorW
PostMessageW
IsWindow
SetCursorPos
GetWindowLongW
wsprintfW
DispatchMessageA
IsZoomed

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 712KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 775KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 1024B - Virtual size: 224B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 161B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5614c30097cb8ac3c94adc7c7acebd1d

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 712KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 775KB - Virtual size: 1.4MB

.data1 Size: 1024B - Virtual size: 224B

.data2 Size: 512B - Virtual size: 161B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 712KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 775KB - Virtual size: 1.4MB

.data1
Size: 1024B - Virtual size: 224B

.data2
Size: 512B - Virtual size: 161B