aadc80ff6ce7f81f2fa7f0d56b1a853a323cbeb9528c3d6f4bd78893eb27702b

General

Target

aadc80ff6ce7f81f2fa7f0d56b1a853a323cbeb9528c3d6f4bd78893eb27702b
Size

308KB
MD5

07c1b2a5e349d6ea7113937644b58ed0
SHA1

30752166ba742fab155b050be90fab3f3dc6b83d
SHA256

aadc80ff6ce7f81f2fa7f0d56b1a853a323cbeb9528c3d6f4bd78893eb27702b
SHA512

2527e7408b36c8a7de847e8d3900a7a321a1d40db73cfe35c1f77d2e4d771cf2d7abe311701c9895feabdbf9cb7dabe8c887403c0988a139001c11d4ffa3bba8
SSDEEP

6144:G1QcP+wbqVnxxmtU61bfQByCUJ84hIP8GauEgh:G1fJb0n6uibfK0IEGfEgh

Score

N/A

Malware Config

Signatures

Files

aadc80ff6ce7f81f2fa7f0d56b1a853a323cbeb9528c3d6f4bd78893eb27702b
.exe windows x86

b2c0a79206821b07ada91106eefbc611

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsBadStringPtrW
InitializeCriticalSection
SetFileAttributesW
GetStartupInfoW
lstrcatA
LeaveCriticalSection
FindResourceA
SetFileTime
lstrcpyA
HeapCreate
GetModuleHandleA
GetFileSize
CreateMutexA
GetLastError
SetFileTime
SetFileTime
ReadFile
GetLocalTime
FormatMessageW
CloseHandle
GetCurrentDirectoryW

msi

MsiCreateRecord
MsiAdvertiseProductA
MsiCloseAllHandles
MsiCloseHandle

user32

LoadCursorW
GetWindowRect
GetWindowTextA
IsWindow
PeekMessageW
wsprintfW
IsZoomed
SetFocus
DispatchMessageA
IsDialogMessageA
GetWindowLongW
SetCursorPos
PostMessageW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 1024B - Virtual size: 211B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b2c0a79206821b07ada91106eefbc611

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 293KB - Virtual size: 293KB

.data1 Size: 1024B - Virtual size: 211B

.data2 Size: 512B - Virtual size: 146B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 293KB - Virtual size: 293KB

.data1
Size: 1024B - Virtual size: 211B

.data2
Size: 512B - Virtual size: 146B