253809c88aa8492fd0e00832bc5f1348516fc4629e287bf51a70c5d9addfa73dN

General

Target

253809c88aa8492fd0e00832bc5f1348516fc4629e287bf51a70c5d9addfa73dN
Size

68KB
MD5

18952959c2385a7a468ab195f5ca5250
SHA1

90bcd274bbd4fc7065b583f2fe39303eddd5a9fb
SHA256

253809c88aa8492fd0e00832bc5f1348516fc4629e287bf51a70c5d9addfa73d
SHA512

fc4eb390c678c24e54032cc9d38f1bfb2b3356399ce34d3198c6afcccbc50168e0d3f2541fe02bed43f52d31e7649018480991f7c7d0b68a44d8258fd1e49ead
SSDEEP

1536:CNk6LLJYUsjWZfWkQ1TMVT08qZHefNgkgPxjJh+UrA1KPLgEcZG/Z6A:CNk6LLJYUsyZfZQ1TM9/qZHemd/EvLOZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
253809c88aa8492fd0e00832bc5f1348516fc4629e287bf51a70c5d9addfa73dN

Files

253809c88aa8492fd0e00832bc5f1348516fc4629e287bf51a70c5d9addfa73dN
.exe windows:4 windows x86 arch:x86

8c4b2b6ac55be3aeab37ee5317e9a9be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
GetFileTime
GetFileSize
IsValidLocale
lstrcatA
lstrcpyA
FindResourceA
HeapCreate
FormatMessageA
ReadConsoleA
GetStartupInfoW
GetCurrentDirectoryW
GetLastError
SetFileAttributesA
ReadConsoleA
ReadFile
InitializeCriticalSection
CreateMutexA
IsBadStringPtrW
ReadConsoleA
GetModuleHandleA

msi

MsiCloseAllHandles
MsiCloseHandle
MsiCreateRecord
MsiAdvertiseProductA

user32

SetFocus
IsDialogMessageA
SetCursorPos
IsZoomed
LoadCursorW
IsWindow
DispatchMessageA
wsprintfW
PeekMessageW
GetWindowLongW
IsCharLowerA
GetWindowTextA
PostMessageW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8c4b2b6ac55be3aeab37ee5317e9a9be

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 53KB - Virtual size: 60KB

.text1 Size: 1024B - Virtual size: 263B

.data2 Size: 512B - Virtual size: 196B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 53KB - Virtual size: 60KB

.text1
Size: 1024B - Virtual size: 263B

.data2
Size: 512B - Virtual size: 196B