adimission-documents[.]exe

General

Target

adimission-documents.exe
Size

190KB
MD5

0b3e5456295e8df8f1a6e0c43d434aac
SHA1

406252747f3f36fa41dd5712ea0258ae3b01e92e
SHA256

8074f72addd8cb5978b12f56ae27f21d622fa95bbfd9cd695d0bedec460300e0
SHA512

c844de10c7065ecea0202f84766225097833f8d8fc92adfbe6a56e0552f45749e7583bbf3e438ac5b9cfa0774b8a320a2c608c1bb9e7a18b2aa4ccd88239b2bd
SSDEEP

1536:x1PvdyKFUb1jQBvLOqB6jmRa3i6EBXlLOUpEOUG/h2:xFvAKFURkhzB6jmRZLOUpE1y2

Score

N/A

Malware Config

Signatures

Files

adimission-documents.exe
.exe windows x86

74cf383cc1d55e93850837ffd561182d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

wininet

InternetCloseHandle
InternetGetConnectedState
InternetOpenA
InternetOpenUrlA
InternetReadFile

kernel32

FindClose
FindFirstFileA
FindNextFileA
GetComputerNameA
GetDriveTypeA
GetLastError
GetTempPathA
GetTickCount
CopyFileA
RtlUnwind
SetCurrentDirectoryA
SetFileAttributesA
Sleep
WinExec
CreateMutexA

advapi32

GetUserNameA
RegCreateKeyA
RegCloseKey
RegSetValueExA

ws2_32

gethostbyname

crtdll

_iob
_itoa
__GetMainArgs
_strnicmp
atoi
exit
fclose
fflush
fopen
fputc
fwrite
localeconv
localtime
memcpy
memmove
memset
pow
raise
signal
strcat
strchr
strftime
strstr
strtol
time
wcslen
wctomb

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

74cf383cc1d55e93850837ffd561182d

Headers

File Characteristics

Imports

shell32

wininet

kernel32

advapi32

ws2_32

crtdll

Sections

.text Size: 27KB - Virtual size: 27KB

.bss Size: - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 156KB - Virtual size: 160KB

.text
Size: 27KB - Virtual size: 27KB

.bss
Size: - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 156KB - Virtual size: 160KB