8ede1122659aae18eb0e66240863e1b721e47bec66d49a1b00f6a4fcca0c5b20

General

Target

8ede1122659aae18eb0e66240863e1b721e47bec66d49a1b00f6a4fcca0c5b20
Size

47KB
MD5

11baa7ec67f792ff04c77d2372014461
SHA1

9f559e8445499c62eaf1760bf247193462a46657
SHA256

8ede1122659aae18eb0e66240863e1b721e47bec66d49a1b00f6a4fcca0c5b20
SHA512

e0b9df5567e5e219412f5dd37d5056094ab07ee447fe700816aac495e4fd7233111a04e7dd2e6e4f82dc29a961551cdad87a5e897c43b3fe6f63eb4473fb5685
SSDEEP

768:N3PE9iFDZTQnSuPX9dYsvY3X42dJer7CsFja9NSaG6rhR9KLRGa02SLQy5YvmD9L:VE9iFDZTQnSuPX9dYsvY3X42dJer7CQU

Score

N/A

Malware Config

Signatures

Files

8ede1122659aae18eb0e66240863e1b721e47bec66d49a1b00f6a4fcca0c5b20
.exe windows x86

624f5a3d6020e684a2344a9be5a997cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

activeds

ADsGetObject

mscat32

CryptCATOpen

kernel32

lstrlenW
HeapFree
GetCurrentProcessId
GlobalUnlock
GetCurrentProcess
VirtualAlloc
FlushInstructionCache
GetDateFormatW
GlobalLock
UnhandledExceptionFilter
SizeofResource
LocalFree
LocalAlloc
CompareFileTime
CompareStringW
IsBadWritePtr
LockResource
TerminateProcess
GlobalFree
InterlockedExchange
EnterCriticalSection
GetSystemDirectoryW
lstrcpynW
lstrcpyW
MultiByteToWideChar
LoadLibraryW
GetCommandLineW
LoadResource
DeleteCriticalSection
lstrlenA
HeapAlloc
FindResourceW
LoadLibraryA
SetLastError
GetLastError
DnsHostnameToComputerNameW
WaitForMultipleObjectsEx
GetCurrentThreadId
InterlockedDecrement
GetModuleHandleW
InterlockedIncrement
GlobalAlloc
InitializeCriticalSection
GetTickCount
Sleep
GlobalSize
GetProcessHeap
FreeLibrary
QueryPerformanceCounter
SystemTimeToTzSpecificLocalTime
lstrcmpW
GetTimeFormatW
SystemTimeToFileTime
GetComputerNameW
FormatMessageW
GetWindowsDirectoryW
GetModuleFileNameW
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
lstrcmpiW
GetSystemWindowsDirectoryW
GetProcAddress
VirtualFree
LoadLibraryExW
LeaveCriticalSection

Sections

.text
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

624f5a3d6020e684a2344a9be5a997cb

Headers

File Characteristics

Imports

activeds

mscat32

kernel32

Sections

.text Size: 512B - Virtual size: 412B

.rsrc Size: 12KB - Virtual size: 11KB

.data Size: - Virtual size: 1.3MB

.idata Size: 19KB - Virtual size: 18KB

.rdata Size: 15KB - Virtual size: 14KB

.text
Size: 512B - Virtual size: 412B

.rsrc
Size: 12KB - Virtual size: 11KB

.data
Size: - Virtual size: 1.3MB

.idata
Size: 19KB - Virtual size: 18KB

.rdata
Size: 15KB - Virtual size: 14KB