987fad88817c66ad448e334b9bd23d26ef877faef55a0390f4bb68fd6b4c48fa

Sharing

Copy URL

Twitter E-mail

General

Target

987fad88817c66ad448e334b9bd23d26ef877faef55a0390f4bb68fd6b4c48fa
Size

474KB
MD5

9a8cb5ab163096fecec95ea7c744355f
SHA1

6edfdcffc240a446c1e009a93fd608f31841f9aa
SHA256

987fad88817c66ad448e334b9bd23d26ef877faef55a0390f4bb68fd6b4c48fa
SHA512

5dd4e1fcd9da9786b1d9dd4b9f36b2901725e8e1bb371994d4430654516d4f5e3408fa340f147c6c01e7371b065cb5bbfece2448ef7f29ce8272c14b272501ad
SSDEEP

6144:1MYpxHU6RfeOt+wVSTBquHRoMMWkgolV+7iu/txxi0t0k/gyZQsZo25Gen2GkSwe:lxHU6pSHTsuHiMMxAfi0SIvQGH5zgST

Score

N/A

Malware Config

Signatures

Files

987fad88817c66ad448e334b9bd23d26ef877faef55a0390f4bb68fd6b4c48fa
.exe windows x86

7f37d410fabdfbd8a3d8ca68096b28de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memcpy
_CIpow
malloc
free
fseek
ftell
fread
fopen
_setjmp3
fclose
wcslen
wcsncpy
wcscpy
realloc
_iob
_setmode
calloc
qsort
memmove
fprintf
_CIlog
frexp
memchr
_fileno
_fstat
gmtime
_snprintf
abort
longjmp
fwrite
fflush
exit
sprintf
getenv
sscanf

kernel32

GetModuleHandleW
HeapCreate
HeapDestroy
ExitProcess
VirtualAlloc
HeapAlloc
HeapFree
GetCurrentThreadId
GetCurrentProcessId
FreeLibrary
LoadLibraryW
WideCharToMultiByte
GetProcAddress
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
TlsAlloc
TlsGetValue
HeapReAlloc
TlsSetValue

comctl32

InitCommonControls

user32

MessageBoxW
GetWindowThreadProcessId
IsWindowVisible
IsWindowEnabled
GetForegroundWindow
EnableWindow
EnumWindows

ole32

CoInitialize

odbc32

SQLGetDiagFieldW
SQLDescribeColW
SQLFreeHandle
SQLAllocHandle
SQLSetStmtAttrW
SQLExecDirectW
SQLGetData
SQLConnectW
SQLDisconnect
SQLDriverConnectW
SQLSetEnvAttr
SQLNumResultCols
SQLFetchScroll
SQLFetch

Sections

.code
Size: 1024B - Virtual size: 661B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 118KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 201KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.flat
Size: 512B - Virtual size: 34B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7f37d410fabdfbd8a3d8ca68096b28de

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

user32

ole32

odbc32

Sections

.code Size: 1024B - Virtual size: 661B

.text Size: 121KB - Virtual size: 120KB

.rdata Size: 31KB - Virtual size: 31KB

.data Size: 118KB - Virtual size: 151KB

.rsrc Size: 201KB - Virtual size: 201KB

.flat Size: 512B - Virtual size: 34B

.code
Size: 1024B - Virtual size: 661B

.text
Size: 121KB - Virtual size: 120KB

.rdata
Size: 31KB - Virtual size: 31KB

.data
Size: 118KB - Virtual size: 151KB

.rsrc
Size: 201KB - Virtual size: 201KB

.flat
Size: 512B - Virtual size: 34B