4554fe1b7b61384786788e09506f2a8958b53d9225174176a29ee4f5cb2c7c18

Sharing

Copy URL

Twitter E-mail

General

Target

4554fe1b7b61384786788e09506f2a8958b53d9225174176a29ee4f5cb2c7c18
Size

854KB
MD5

6f8efc3f50a1c95a22903e96ab411fcd
SHA1

618ea7e388a564454854f2aefc8cb16d2226733f
SHA256

4554fe1b7b61384786788e09506f2a8958b53d9225174176a29ee4f5cb2c7c18
SHA512

b120c4cd6ee51eb8b2270aabb9a65b8466e37b53661491ecc72f2c0f20d6c587021574a3dd24740d11691bfdd0955ff3c96bbf16709142ec8c17a7c803f80a87
SSDEEP

24576:bk4HEnBYT3AIRVbsikz40Fi6XDzfqbAAyhWYC:bkl+TFRVgRz40A6XHo7d

Score

N/A

Malware Config

Signatures

Files

4554fe1b7b61384786788e09506f2a8958b53d9225174176a29ee4f5cb2c7c18
.exe windows x86

3aa93d75709723f45d9d5da6b7a32024

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

sqlunirl

_FindWindow_@8
_CreateIC_@16
_RegOpenKeyEx_@20
_CreateMDIWindow_@40
_SetWindowLong@12
_LoadImage_@24
_EnumDisplaySettings_@12
_trename
_CallMsgFilter_@8
_GetDriveType_@4
_CharPrev_@8
_GetPrivateProfileSectionNames_@12
_LoadCursorFromFile_@4
_EnumWindowStations_@8
_OpenEvent_@12
_MessageBoxIndirect_@4
_CharNext_@4
_SetICMProfile_@8
_GetOpenFileName@4
_GetUnicodeRedirectionLayer@0
_DragQueryFile_@16
_SetWindowsHookEx_@16
_GetModuleHandle_@4
_GetVersionEx@4
_GetKeyboardLayoutName_@4
_GetVolumeInformation_@32
_ObjectDeleteAuditAlarm_@12
__hwrite_@12
_EnumResourceNames_@16
_NDdeTrustedShareEnum_@24
_GetToolsFilePath@16
_DlgDirSelectComboBoxEx_@16
_RegLoadKey_@12
_ShellExecuteEx_@4
_IsBadStringPtr_@8
_GetClassName_@12
_GetClipboardFormatName_@12
_WritePrivateProfileString_@16
_CharUpperBuff_@8
_FormatMessage@28
_RegisterWindowMessage_@4
_WriteConsoleInput_@16

winmm

midiOutGetDevCapsW
midiOutGetErrorTextA
midiInPrepareHeader
auxOutMessage
timeKillEvent
midiInUnprepareHeader
mmioGetInfo
waveInGetErrorTextA
auxGetDevCapsA
mmioOpenA
DrvGetModuleHandle
mciGetYieldProc
mciGetCreatorTask
mixerMessage
WOW32DriverCallback
mmDrvInstall
joyConfigChanged
waveOutGetDevCapsW
waveOutGetPosition
mmioCreateChunk
waveOutUnprepareHeader
DefDriverProc
tid32Message
auxGetDevCapsW
waveInGetPosition

esent

JetUpdate
JetCreateInstance2
JetCreateDatabase2
JetExternalRestore
JetCreateIndex
JetExternalRestore2
JetEscrowUpdate
JetDupSession
JetSetColumnDefaultValue
JetPrepareUpdate
JetBackupInstance
JetGetObjectInfo
JetSetColumn
JetGotoPosition
JetDetachDatabase
JetTruncateLogInstance

kernel32

GetDateFormatA
InterlockedExchangeAdd
lstrcpyn
LocalAlloc
VirtualAlloc
EnumLanguageGroupLocalesA
GlobalMemoryStatusEx
SetConsoleDisplayMode
GetConsoleFontInfo
GetConsoleOutputCP
GetSystemTimeAsFileTime
BackupRead
LoadLibraryA
ConvertDefaultLocale
GetBinaryTypeW
GetGeoInfoA
GetVolumeInformationA
GlobalAddAtomA
CreateThread

msvcrt

_mbsnicmp
_ismbcpunct
_adj_fprem1
_mbcasemap
??1type_info@@UAE@XZ
_errno
_isatty
vfwprintf
__p___initenv
_rotl
_mbscat
_strupr
__CxxCallUnwindDtor
_daylight
_inp
_mbsrchr

shell32

SHGetMalloc

user32

MessageBoxW
EndDialog

Sections

.text
Size: 753KB - Virtual size: 753KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3aa93d75709723f45d9d5da6b7a32024

Headers

DLL Characteristics

File Characteristics

Imports

sqlunirl

winmm

esent

kernel32

msvcrt

shell32

user32

Sections

.text Size: 753KB - Virtual size: 753KB

.rdata Size: 91KB - Virtual size: 91KB

.data Size: 5KB - Virtual size: 1.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 753KB - Virtual size: 753KB

.rdata
Size: 91KB - Virtual size: 91KB

.data
Size: 5KB - Virtual size: 1.5MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB