bd08b6a5edfa1878287931a26a70c892d873859fe8cf65048b704ec14721faa5

General

Target

bd08b6a5edfa1878287931a26a70c892d873859fe8cf65048b704ec14721faa5
Size

12KB
MD5

921f921aee76c502a01453401e94d3cb
SHA1

a26cc02ebc117961560164a0b2a29e90f14b20ec
SHA256

bd08b6a5edfa1878287931a26a70c892d873859fe8cf65048b704ec14721faa5
SHA512

58a8082516900675f78cef3ea3ea07cd7233f83f195574181d4fe70bf6a442979d07190050d15b43c41fd0edd1ff3494fa58cf6f29400a248714126bac16bff0
SSDEEP

192:auZlxtnnoeUMu9V/0hiCm+ykhmOWV9DpH2eqH1zlWkalSw7eWp6cvh:aMxtn4MyF0hbm6hmOWV9DpHkczp6cvh

Score

N/A

Malware Config

Signatures

Files

bd08b6a5edfa1878287931a26a70c892d873859fe8cf65048b704ec14721faa5
.exe windows x86

4ef2cd1a026342b0e334fc30c0ab73db

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

odbc32

SQLColAttributeA
LockHandle
SQLEndTran
SQLSetScrollOptions
SQLPrimaryKeysA
SQLFreeStmt
SQLGetStmtAttrA
SQLGetData
SQLSetCursorNameA
SQLSetEnvAttr
SQLFreeHandle
SQLNativeSqlA
SQLGetDiagRec
VFreeErrors
SQLDescribeCol
PostComponentError
SQLSetStmtOption
SQLSpecialColumns
VRetrieveDriverErrorsRowCol
SQLError
SQLColumnPrivileges
OpenODBCPerfData
SQLDataSourcesA
SQLGetDescFieldA

advpack

TranslateInfString
UserUnInstStubWrapper
AddDelBackupEntry
CloseINFEngine
FileSaveMarkNotExist
RegSaveRestoreOnINF
NeedReboot
ExecuteCab
TranslateInfStringEx
OpenINFEngine
IsNTAdmin
RegisterOCX

adsldpc

Component
FreeADsStr
GetDisplayName
ADSIModifyRdn
BuildADsPathFromLDAPPath
ADsDeleteClassDefinition
BuildADsParentPath
ADsGetFirstRow
ADsGetLastError

kernel32

lstrcpyA
ExitProcess
GetProcessHeap
WriteFileEx
CreateFileA
InitializeSListHead
CreateNamedPipeA
CompareStringA
SetFilePointerEx
SetFilePointer
CloseHandle
InterlockedCompareExchange
DisconnectNamedPipe
InterlockedPushEntrySList
GetSystemInfo
ReadFile
VirtualFree
WaitForMultipleObjects
VirtualAlloc
ConnectNamedPipe

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ef2cd1a026342b0e334fc30c0ab73db

Headers

DLL Characteristics

File Characteristics

Imports

odbc32

advpack

adsldpc

kernel32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 4KB