840241fc0b2d76012ee47cd78ede5c97368d3a230b55a789b4c07addd20e5be0

Sharing

Copy URL Twitter E-mail

General

Target

840241fc0b2d76012ee47cd78ede5c97368d3a230b55a789b4c07addd20e5be0
Size

796KB
MD5

6eb922f4d071b88d4a4c603a52f37973
SHA1

8172264f64579a0f38b9c5e97334ee683d427fbe
SHA256

840241fc0b2d76012ee47cd78ede5c97368d3a230b55a789b4c07addd20e5be0
SHA512

d25a885d6839586443b4a80cb72600909e2010fb252dad87bd0e4770270d3e70d0ff7192b131819299d47164cf9d83de9ff5785337fd47ccc91659390e7db465
SSDEEP

24576:BgSLrlrOJONtYmbPHCA37VYkSI0DYcAk3lY:BgS/lHymb/nVpz0kcAk3l

Score

N/A

Malware Config

Signatures

Files

840241fc0b2d76012ee47cd78ede5c97368d3a230b55a789b4c07addd20e5be0
.exe windows x86

e4843af06d4dca70bea4d591ee5f6942

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualAlloc
EnumResourceLanguagesA
SetConsoleTitleA
OpenSemaphoreW
SetVDMCurrentDirectories
GetStringTypeExA
DeleteVolumeMountPointW
ReleaseMutex
ScrollConsoleScreenBufferA
MulDiv
LocalSize
SetFilePointerEx
GetProcessPriorityBoost
InterlockedExchangeAdd
EnumSystemLocalesA
GetUserDefaultLCID
Process32FirstW
SwitchToFiber
GetLogicalDriveStringsW

rtutils

TraceVprintfExA
RouterLogDeregisterA
TraceRegisterExW
TracePrintfExA
RouterLogRegisterA
TraceRegisterExA
TraceDeregisterW
RouterLogEventStringA
RouterLogEventExW
RouterLogEventDataA
TracePrintfA
RouterLogEventExA
RouterLogRegisterW
RouterLogEventA
RouterLogDeregisterW
TracePrintfExW
RouterLogEventW
LogEventA
TracePutsExA
MprSetupProtocolEnum
TracePrintfW
RouterLogEventStringW
TraceDumpExA
LogEventW
MprSetupProtocolFree
TraceDeregisterExA
TraceDeregisterA
LogErrorA

odbc32

CursorLibTransact
VFreeErrors
PostODBCError
SQLBrowseConnectA
VRetrieveDriverErrorsRowCol
CursorLibLockDesc
CursorLibLockStmt
LockHandle
CursorLibLockDbc
PostODBCComponentError
ValidateErrorQueue
SearchStatusCode

ole32

StgIsStorageFile
WriteClassStg
StgConvertPropertyToVariant
HDC_UserFree
CLSIDFromProgID
CLSIDFromString
ReleaseStgMedium
CoDisconnectObject
CoGetMalloc
OleLoadFromStream
HBITMAP_UserUnmarshal
CoTaskMemRealloc
OleLoad

gdi32

Rectangle
SetPixel
GetCharWidth32W
GetTextCharsetInfo
GetObjectType
SetBrushOrgEx
GetGlyphOutlineA
EnumFontsA
GetLayout
ExtEscape
GetMapMode
SetTextColor
SetSystemPaletteUse
GetPixelFormat
GetPolyFillMode
SetGraphicsMode
EndPage
OffsetRgn
CreatePatternBrush
SetTextAlign
CreateHatchBrush
StartPage
SetViewportExtEx
GetObjectW
CreateCompatibleDC
PtVisible
MaskBlt
AbortPath
SetBoundsRect
DPtoLP

Sections

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 21KB - Virtual size: 322KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 177KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 299KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 176KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 230B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4843af06d4dca70bea4d591ee5f6942

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

rtutils

odbc32

ole32

gdi32

Sections

.idata Size: 2KB - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.idata Size: 7KB - Virtual size: 6KB

.text Size: 21KB - Virtual size: 322KB

.data Size: 177KB - Virtual size: 416KB

.bss Size: 299KB - Virtual size: 357KB

.rdata Size: 176KB - Virtual size: 180KB

.rsrc Size: 109KB - Virtual size: 108KB

.reloc Size: 512B - Virtual size: 230B

.idata
Size: 2KB - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.idata
Size: 7KB - Virtual size: 6KB

.text
Size: 21KB - Virtual size: 322KB

.data
Size: 177KB - Virtual size: 416KB

.bss
Size: 299KB - Virtual size: 357KB

.rdata
Size: 176KB - Virtual size: 180KB

.rsrc
Size: 109KB - Virtual size: 108KB

.reloc
Size: 512B - Virtual size: 230B