6821c95e889896c418730723f0382f42740e957b731b899302626ed0dc1fce8b

Sharing

Copy URL Twitter E-mail

General

Target

6821c95e889896c418730723f0382f42740e957b731b899302626ed0dc1fce8b
Size

848KB
MD5

4aad601b716e547d294defecb52c81d9
SHA1

75924d51c6f7c82a4a2b496ebd2188721eb1750b
SHA256

6821c95e889896c418730723f0382f42740e957b731b899302626ed0dc1fce8b
SHA512

e4a7c9d3924a4c2b393a133e7204ba66dfeb8588df4588e8b71f0654def2596ee039d0d3f8aef219746957a4f34b351b7a9056e0a8f3d915b17f8b0e7182d07a
SSDEEP

12288:JSZIdW/jcdHuN78rbRPhVYncD4KKUBtkLRQuxKE9PNB4Ie/Ri4AZvpWWMfrRlej:kNjxdyRD4KCLNKEPB98k4AZRWWKrR4j

Score

N/A

Malware Config

Signatures

Files

6821c95e889896c418730723f0382f42740e957b731b899302626ed0dc1fce8b
.exe windows x86

fe0a3a768eb66a78b1171248fcf7acfd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

hhsetup

?HandleLocation@CCollection@@AAEKPAVCParseXML@@PAD@Z
?GetId@CTitle@@QAEPADXZ
?DeleteFolder@CCollection@@QAEKPAVCFolder@@@Z
?GetNextTitle@CTitle@@QAEPAV1@XZ
??1CTitle@@QAE@XZ
?AddLocationHistory@CTitle@@QAEKKPBD00PBVCLocation@@00H@Z
?GetFirstChildFolder@CFolder@@QAEPAV1@XZ
?AllocCopyValue@CCollection@@AAEKPAVCParseXML@@PADPAPAD@Z
?WriteFolder@CCollection@@AAEHPAPAVCFolder@@@Z
?FindLocation@CCollection@@QAEPAVCLocation@@PBGPAI@Z
?CheckTitleRef@CCollection@@AAEKPBGG@Z
?GetLanguage@CTitle@@QAEGXZ
?GetParent@CFolder@@QAEPAV1@XZ
??1CCollection@@QAE@XZ
?GetVolumeW@CLocation@@QAEPBGXZ
??0CFolder@@QAE@XZ
?Dirty@CCollection@@QAEXXZ
?DeleteLocalFiles@CCollection@@AAEXPAULocationHistory@@PAVCTitle@@@Z
?GetMasterCHM@CCollection@@QAEHPAPAGPAG@Z
?SetId@CTitle@@QAEXPBG@Z
?MergeKeywords@CCollection@@QAEHPAG@Z
??0CCollection@@QAE@XZ
??4CFolder@@QAEAAV0@ABV0@@Z
?GetLangId@CCollection@@QAEGPBD@Z

crtdll

wcscspn
_scalb
_execl
_tell
iswdigit
_ismbcl0
_spawnlp
_mbsncpy
_CIpow
_strlwr
_ismbcprint
_acmdln_dll
_futime
_stat
_rotr
_getdllprocaddr
is_wctype
strchr
strspn
_mbctokata
_memicmp
atof
_cputs
fgetc
__iscsym
_nextafter
fscanf
wcschr
_execve
_CIacos
iswlower
_stricmp
_spawnl
fgets
tolower
_sopen
_onexit
_basemajor_dll

kernel32

lstrcmpA
FindNextChangeNotification
EnumResourceTypesA
MoveFileWithProgressA
GlobalFindAtomW
WriteConsoleW
ReadConsoleOutputCharacterA
QueryInformationJobObject
VirtualAlloc
ReadConsoleOutputCharacterW
LeaveCriticalSection
GetConsoleInputExeNameW
GetStringTypeExA
GetLocaleInfoW
LoadLibraryA
GetNumberFormatA
WriteConsoleInputA
SetWaitableTimer
BackupWrite
SetConsolePalette
RegisterConsoleVDM

uxtheme

DrawThemeText
GetThemeBool
GetThemeFilename
GetThemePartSize
DrawThemeEdge
GetThemeSysInt
GetThemeRect
SetWindowTheme
GetThemeBackgroundExtent
GetThemePropertyOrigin
IsThemePartDefined
GetThemeMargins
GetThemeSysColor
GetThemeSysColorBrush
HitTestThemeBackground
IsThemeBackgroundPartiallyTransparent
EnableThemeDialogTexture
GetThemeSysString

odbc32

SQLAllocHandleStd
SQLGetDescRecA
SQLConnect
SQLMoreResults
SQLSetDescFieldW
SQLTablesW
SQLGetInfoA
SQLGetFunctions
SQLAllocConnect
CursorLibLockStmt
CursorLibLockDesc
SQLSetConnectAttrW
SQLNumResultCols
PostODBCComponentError
SQLFreeStmt

Sections

.text
Size: 732KB - Virtual size: 731KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe0a3a768eb66a78b1171248fcf7acfd

Headers

DLL Characteristics

File Characteristics

Imports

hhsetup

crtdll

kernel32

uxtheme

odbc32

Sections

.text Size: 732KB - Virtual size: 731KB

.rdata Size: 107KB - Virtual size: 107KB

.data Size: 5KB - Virtual size: 1.4MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 732KB - Virtual size: 731KB

.rdata
Size: 107KB - Virtual size: 107KB

.data
Size: 5KB - Virtual size: 1.4MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 1024B