d8ac99d09a0d10922617e64ffdf09e6c13bd99179f3b8ef72f4dc021ced77c8f

Sharing

Copy URL Twitter E-mail

General

Target

d8ac99d09a0d10922617e64ffdf09e6c13bd99179f3b8ef72f4dc021ced77c8f
Size

45KB
MD5

321f928705286910760da3de9873d360
SHA1

a6925cebc264e27226af2b133d1287a3adc3c4fc
SHA256

d8ac99d09a0d10922617e64ffdf09e6c13bd99179f3b8ef72f4dc021ced77c8f
SHA512

943ea46cf6c1e17ab8dbdf107fe5b807d75baced539edc8ac60b19a6ef57a5343e2b31cace185828c13cb710b995477451ed248349be588b043df5f26b5c3d5e
SSDEEP

768:RC9Rogdg63JVITt3wNUbjy0U9M0lnMNd8gNIjd36xhK7Q40mXbQQ:RC9qEv3qt3wao9TlnMNd8NdKxhK7Q4xD

Score

N/A

Malware Config

Signatures

Files

d8ac99d09a0d10922617e64ffdf09e6c13bd99179f3b8ef72f4dc021ced77c8f
.exe windows x86

c29cb9419d0053a1869df1f7e511305e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

inetcomm

MimeOleCreateBody
MimeOleGenerateFileName
EssContentHintEncodeEx
MimeOleParseRfc822Address
HrGetAttachIcon
HrGetLastOpenFileDirectory
MimeOleSMimeCapInit
MimeOleEncodeHeader
EssContentHintDecodeEx
MimeEditGetBackgroundImageUrl
HrSaveAttachToFile
MimeOleSetBodyPropA
EssReceiptDecodeEx
MimeOleSMimeCapGetEncAlg
EssReceiptRequestEncodeEx
MimeEditCreateMimeDocument
MimeOleSetPropW
HrAthGetFileNameW
MimeOleStripHeaders
MimeOleGetExtContentType
MimeOleGetFileInfo
MimeOleFileTimeToInetDate
EssSecurityLabelDecodeEx
EssSignCertificateDecodeEx
MimeOleParseMhtmlUrl
MimeEditIsSafeToRun

msvfw32

MCIWndCreateA
DrawDibStop
ICImageDecompress
ICGetDisplayFormat
DrawDibEnd
ICDrawBegin
GetSaveFileNamePreviewA
GetOpenFileNamePreview
DrawDibSetPalette
DrawDibClose
DrawDibRealize
ICRemove
DrawDibGetBuffer
DrawDibDraw
ICSeqCompressFrameEnd
MCIWndCreate
ICDecompress
DrawDibChangePalette
ICGetInfo
ICMThunk32
GetOpenFileNamePreviewA
ICSendMessage
DrawDibStart
ICCompressorFree
DrawDibBegin
VideoForWindowsVersion
ICDraw
ICCompress
MCIWndCreateW
ICInstall
MCIWndRegisterClass
ICSeqCompressFrameStart

kernel32

LoadLibraryA
EraseTape
Thread32Next
FileTimeToLocalFileTime
RegisterConsoleIME
LZCloseFile
BuildCommDCBAndTimeoutsA
SetSystemTimeAdjustment
GetModuleHandleW
SetCurrentDirectoryA
ConvertFiberToThread
GetProcAddress
OutputDebugStringW
GlobalFix
GetStartupInfoA
OpenFileMappingA
EnumDateFormatsA
SetConsoleWindowInfo
UnmapViewOfFile
SetVolumeMountPointW
SignalObjectAndWait
GlobalAlloc
GetACP
SetCommConfig
MapUserPhysicalPagesScatter
EnumSystemLanguageGroupsW
EnumResourceTypesW
VirtualAlloc
lstrlenA

mtxoci

oerhms
obndra
ologof
oexfet
olog
oopen
Enlist
odescr
odessp
oflng
GetXaSwitch
odefin
MTxolog
ologTransacted
oexn
ocom
ocan
oparse
MTxOciInit
oermsg
ocon
obindps
odefinps
ofetch
obndrv
oclose
oexec
MTxOciGetVersion

sqlsrv32

SQLGetDiagRecW
SQLExtendedFetch
BCP_init
SQLSetStmtAttrW
SQLGetConnectAttrW
SQLGetConnectOptionW
ConnectDlgProc
BCP_moretext
SQLGetCursorNameW
SQLGetTypeInfoW
SQLSetCursorNameW
SQLParamData
SQLSetDescRec
BCP_writefmt
SQLPrepareW
SQLCancel
BCP_readfmt
BCP_done
SQLGetDiagFieldW
SQLFetch
SQLSetEnvAttr
SQLGetInfoW
SQLGetDescFieldW
SQLExecute
BCP_setcolfmt

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c29cb9419d0053a1869df1f7e511305e

Headers

DLL Characteristics

File Characteristics

Imports

inetcomm

msvfw32

kernel32

mtxoci

sqlsrv32

Sections

.text Size: 35KB - Virtual size: 34KB

.rdata Size: 7KB - Virtual size: 6KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 35KB - Virtual size: 34KB

.rdata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 2KB - Virtual size: 1KB