b9e0e70d3d1958347c1ec3a83b99f9895b3120931b237585890d141a33ddc22c

Sharing

Copy URL Twitter E-mail

General

Target

b9e0e70d3d1958347c1ec3a83b99f9895b3120931b237585890d141a33ddc22c
Size

851KB
MD5

09ca77a0491a27ad28f95aa17eb40ffa
SHA1

4652292f72b3f2a525fd8bcf1536b31116dbbb8d
SHA256

b9e0e70d3d1958347c1ec3a83b99f9895b3120931b237585890d141a33ddc22c
SHA512

500a0749a7a3ba7439c62fd694ee33125a17fd6b216261485e8755efec359617bde87e30a25c408e84937c6ecda0d94f679798d7f7e5f6c9e5f21c24dd902b00
SSDEEP

24576:Ke9agOT3tGje8mdVfGhicn+lKxjnl7/WkxuuhX1lJe3Zql:KeviQ68yCv+ijnl7bPsol

Score

N/A

Malware Config

Signatures

Files

b9e0e70d3d1958347c1ec3a83b99f9895b3120931b237585890d141a33ddc22c
.exe windows x86

1100d0385d3db4b9c72d6c86acbb867b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

rtutils

RouterLogEventDataA
TraceDeregisterExW
RouterLogDeregisterW
TracePutsExW
TracePrintfExW
MprSetupProtocolFree
TracePrintfExA
RouterGetErrorStringA
TraceRegisterExA
TraceRegisterExW
RouterLogEventStringA
MprSetupProtocolEnum
RouterLogEventValistExA
TracePutsExA
RouterLogEventExW
LogEventA

kernel32

GetConsoleDisplayMode
LoadLibraryA
CreateSocketHandle
GetDefaultCommConfigA
FindFirstChangeNotificationW
GetTimeZoneInformation
GetThreadPriorityBoost
GetSystemTimeAsFileTime
LocalAlloc
FindNextVolumeA
Heap32First
LZCloseFile
VirtualAlloc
GetNumberOfConsoleInputEvents
GetBinaryType
GetSystemTimeAdjustment
PrivMoveFileIdentityW
GlobalUnWire
GetVolumeNameForVolumeMountPointA
SetConsoleCursorPosition
IsSystemResumeAutomatic

imm32

ImmWINNLSGetEnableStatus
ImmSetConversionStatus
ImmDisableIME
ImmSetCompositionFontA
ImmAssociateContext
ImmSendIMEMessageExW
ImmReleaseContext
ImmSendIMEMessageExA
ImmLockClientImc
ImmLockImeDpi
ImmSystemHandler
ImmUnlockIMCC
ImmIMPQueryIMEA
ImmIMPGetIMEW
ImmGetCompositionFontW

odbcjt32

SQLGetData
SQLColAttributeW
SQLSetConnectAttrW
SQLDriverConnectW
SQLBindCol
SQLFetch
SQLFreeHandle
SQLSetEnvAttr
SQLGetFunctions
SQLAllocStmt
SQLProcedureColumnsW
SQLFreeConnect
SQLConnectW
ConfigDSNW
SQLExecDirectW
SQLParamData
SQLSetScrollOptions
SelectIndexDlgProc
SQLSetDescFieldW
ConfigDialogProc

opengl32

glColor4d
glPixelTransferf
glRotatef
glScissor
glColor3sv
glTexCoord1f
glMatrixMode
glRasterPos2f
glAccum
glScalef
glShadeModel
GlmfEndPlayback
glTexCoord4s
glIndexiv
glGetIntegerv
glEvalMesh2
glIsList
glEnableClientState
glBlendFunc
wglSwapBuffers
glCopyPixels
glColor4us
glGetDoublev
glStencilOp

davclnt

DllMain
NPCancelConnection
NPGetConnection
NPFormatNetworkName
NPCloseEnum
NPAddConnection
DavGetDiskSpaceUsage
NPGetUser
NPGetResourceParent
NPGetCaps
DavFreeUsedDiskSpace
NPGetUniversalName
NPAddConnection3
NPGetResourceInformation
NPOpenEnum
NPEnumResource

Sections

.text
Size: 751KB - Virtual size: 751KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1100d0385d3db4b9c72d6c86acbb867b

Headers

DLL Characteristics

File Characteristics

Imports

rtutils

kernel32

imm32

odbcjt32

opengl32

davclnt

Sections

.text Size: 751KB - Virtual size: 751KB

.rdata Size: 91KB - Virtual size: 90KB

.data Size: 4KB - Virtual size: 1.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 751KB - Virtual size: 751KB

.rdata
Size: 91KB - Virtual size: 90KB

.data
Size: 4KB - Virtual size: 1.5MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB