45ec99e84549ce37bcfe25ce1ec1ba0f4ade6c096a2fac0966997327108deea5[.]exe

General

Target

45ec99e84549ce37bcfe25ce1ec1ba0f4ade6c096a2fac0966997327108deea5.exe
Size

125KB
MD5

ae05ed4c37e7b646c69b963cb3699c1c
SHA1

edd68d15014ba79e4a16fe60322a423e5fca2075
SHA256

45ec99e84549ce37bcfe25ce1ec1ba0f4ade6c096a2fac0966997327108deea5
SHA512

6ade9452c44badff20a09e23d279b577ce9dfd62649fc6b9cca00580bef8281d61e23b88d038e4bc01fac198d8ba4bd316c17e2edf80fb3a900f0a4da44608d5
SSDEEP

3072:GaPjRdi6wpXgnSWc5ekQj5uOSpzkUVN/u3l3lG/:HbPt1c5eN5uBzlz/u3+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45ec99e84549ce37bcfe25ce1ec1ba0f4ade6c096a2fac0966997327108deea5.exe

Files

45ec99e84549ce37bcfe25ce1ec1ba0f4ade6c096a2fac0966997327108deea5.exe
.exe windows:4 windows x86 arch:x86

0bb715ba03c5196725c1b939beee3046

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleA
CloseHandle
GetCurrentDirectoryW
InitializeCriticalSection
lstrcpyA
ReadConsoleA
lstrcatA
LeaveCriticalSection
FormatMessageA
HeapCreate
GetStartupInfoW
FindResourceA
ReadConsoleA
ReadFile
SetFileAttributesA
GetLocalTime
GetFileSize
GetLastError
CreateMutexA
GetModuleHandleA
IsBadStringPtrW

msi

MsiAdvertiseProductA
MsiCloseHandle
MsiCloseAllHandles
MsiCreateRecord

user32

DispatchMessageA
GetWindowTextA
GetWindowLongW
IsWindow
IsDialogMessageA
LoadCursorW
IsCharLowerA
IsZoomed
SetFocus
SetCursorPos
wsprintfW
PeekMessageW
PostMessageW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 178B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0bb715ba03c5196725c1b939beee3046

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 110KB - Virtual size: 110KB

.text1 Size: 1024B - Virtual size: 263B

.data2 Size: 512B - Virtual size: 178B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 110KB - Virtual size: 110KB

.text1
Size: 1024B - Virtual size: 263B

.data2
Size: 512B - Virtual size: 178B