dcdb319fd0d8f627682fc33ac6f0b04383bd220d6fe0c5e3494c986a7a90d3b3N[.]exe

General

Target

dcdb319fd0d8f627682fc33ac6f0b04383bd220d6fe0c5e3494c986a7a90d3b3N.exe
Size

125KB
MD5

6ed8986679ad13624c7660e9a97a1070
SHA1

d28cfbf3a39f5aa398fd710c11bd19eefba51383
SHA256

dcdb319fd0d8f627682fc33ac6f0b04383bd220d6fe0c5e3494c986a7a90d3b3
SHA512

93543163a0ddcd5b573e795a61f961e68d3c9863fa19be9832ac0199f7b79f96b9f81dad9d549ae704e93764771d0d263c16b70e9995957fc8ed71abc1ce2538
SSDEEP

3072:GaPjRdi6wpXgnSWc5ekQj5uOSpzkUVN/u3l3lG:HbPt1c5eN5uBzlz/u3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcdb319fd0d8f627682fc33ac6f0b04383bd220d6fe0c5e3494c986a7a90d3b3N.exe

Files

dcdb319fd0d8f627682fc33ac6f0b04383bd220d6fe0c5e3494c986a7a90d3b3N.exe
.exe windows:4 windows x86 arch:x86

0bb715ba03c5196725c1b939beee3046

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleA
CloseHandle
GetCurrentDirectoryW
InitializeCriticalSection
lstrcpyA
ReadConsoleA
lstrcatA
LeaveCriticalSection
FormatMessageA
HeapCreate
GetStartupInfoW
FindResourceA
ReadConsoleA
ReadFile
SetFileAttributesA
GetLocalTime
GetFileSize
GetLastError
CreateMutexA
GetModuleHandleA
IsBadStringPtrW

msi

MsiAdvertiseProductA
MsiCloseHandle
MsiCloseAllHandles
MsiCreateRecord

user32

DispatchMessageA
GetWindowTextA
GetWindowLongW
IsWindow
IsDialogMessageA
LoadCursorW
IsCharLowerA
IsZoomed
SetFocus
SetCursorPos
wsprintfW
PeekMessageW
PostMessageW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 178B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0bb715ba03c5196725c1b939beee3046

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 110KB - Virtual size: 110KB

.text1 Size: 1024B - Virtual size: 263B

.data2 Size: 512B - Virtual size: 178B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 110KB - Virtual size: 110KB

.text1
Size: 1024B - Virtual size: 263B

.data2
Size: 512B - Virtual size: 178B