03a5b1932b5edea1d60c6090a9a3052ff0524abe7373c24560b4d13e8d90d5b7

General

Target

03a5b1932b5edea1d60c6090a9a3052ff0524abe7373c24560b4d13e8d90d5b7
Size

1.1MB
MD5

a354b4f6743cb009017405d43991c317
SHA1

2c24baf83ffda2eaa1b18e285c31fbd80f75f8da
SHA256

03a5b1932b5edea1d60c6090a9a3052ff0524abe7373c24560b4d13e8d90d5b7
SHA512

5c9deed998a8b0c0a1a0fda066e44ffbf7ea498f1ab3e02ddc5f71448e4b084a04ee2ade65d1d8b5ab6f8447d4366eb1ad6e31378e13bcf2945e485e1c52e3dc
SSDEEP

24576:UnjcuDbkfBAOmFyYAPsHSDZWk+rHlw5hUfLRUXhpw6:eEHmWF+rWh3XI

Score

N/A

Malware Config

Signatures

Files

03a5b1932b5edea1d60c6090a9a3052ff0524abe7373c24560b4d13e8d90d5b7
.exe windows x86

a13c246742fbc03f4cc16bc3cdcee272

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ConnectNamedPipe
GetNamedPipeInfo
InterlockedIncrement
SetFilePointer
GetThreadPriorityBoost
GetFileTime
VerSetConditionMask
ExitProcess
VirtualAlloc
ReadFile
CreateFileA
GetFirmwareEnvironmentVariableA
InterlockedPushEntrySList
GetProcessHeap
HeapFree
InterlockedDecrement
SetProcessPriorityBoost
GetSystemTime
GetCurrentProcess
DosDateTimeToFileTime
HeapLock
GetSystemTimeAdjustment
InterlockedCompareExchange
FileTimeToSystemTime
VirtualFree
SetNamedPipeHandleState
CreateNamedPipeA
PeekNamedPipe
HeapUnlock
HeapAlloc
InterlockedPopEntrySList
HeapReAlloc
CloseHandle
WaitForMultipleObjects
GetStringTypeA

user32

DestroyWindow
EndPaint
TranslateMessage
ShowWindow
CreateWindowExA
DispatchMessageA
SendMessageA
UpdateWindow
DefWindowProcA
BeginPaint
GetMessageA
RegisterClassA

odbc32

OpenODBCPerfData
SQLFetch
SQLSpecialColumnsA
SQLMoreResults
CursorLibLockStmt
SQLTablePrivileges
SQLBrowseConnect
SQLBindParameter
SQLSetConnectAttrA
SQLTransact
SQLSetStmtOption
SQLPrepareA
SQLGetStmtAttr
PostComponentError
DllBidEntryPoint
SQLProcedureColumnsA
SQLColumnPrivilegesA
SQLColumnsA
SQLError
SQLGetConnectOptionA
SQLFetchScroll
SQLProcedures
SQLColAttributesA
SQLDriverConnect
ValidateErrorQueue
SQLGetDiagRec
SQLColAttributeA
SQLColumnPrivileges
SQLDriverConnectA
SQLDataSources
SQLStatistics
SQLParamData
SQLTablesA

Sections

.text
Size: 808KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 302KB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a13c246742fbc03f4cc16bc3cdcee272

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

odbc32

Sections

.text Size: 808KB - Virtual size: 808KB

.data Size: 17KB - Virtual size: 16KB

.rsrc Size: 302KB - Virtual size: 3.4MB

.text
Size: 808KB - Virtual size: 808KB

.data
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 302KB - Virtual size: 3.4MB