890856b0579ac93a1c66ee9a4a70ae8544e54799c4bfb9b613afaedabf32c4c3

General

Target

890856b0579ac93a1c66ee9a4a70ae8544e54799c4bfb9b613afaedabf32c4c3
Size

97KB
MD5

7295d8f9b8e02cdc7f9e631e87914aa0
SHA1

d8c097c5a963d83e56229b643b0c9d1db9997307
SHA256

890856b0579ac93a1c66ee9a4a70ae8544e54799c4bfb9b613afaedabf32c4c3
SHA512

1455b8b75502ba406f6b76b6e61067575294cb96c0c067e6338e7daea249a67997a78132ff9723b43000159acea194ca3691c78c7e5e775b65df47818c7eeff1
SSDEEP

1536:ubdbqBtSCL699IX0hWh3hQJsGwiATmJKAN2QbMFjV5WQoyrOX:2S0C29IX0oh3WcTmw5K6OX

Score

N/A

Malware Config

Signatures

Files

890856b0579ac93a1c66ee9a4a70ae8544e54799c4bfb9b613afaedabf32c4c3
.exe windows x86

1c41f0e00ecbe9638436fe78d4e87a2d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

intl

libintl_gettext

libpq

ord45
ord48
ord95
ord155
ord60
ord34
ord33
ord21
ord140
ord4
ord14
ord96
ord113
ord156
ord15

kernel32

DecodePointer
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
EncodePointer
GetSystemTimeAsFileTime
SetConsoleMode
GetConsoleMode
GetStdHandle

msvcr120

_errno
abort
getenv
free
malloc
strerror
strncmp
strstr
isalpha
fwrite
sprintf
memmove
strrchr
isdigit
_dclass
strtoul
fclose
_getcwd
fopen
fputs
strtol
isupper
islower
toupper
tolower
_XcptFilter
_amsg_exit
__getmainargs
__set_app_type
_exit
_cexit
_configthreadlocale
__setusermatherr
_initterm_e
_initterm
__initenv
_fmode
_commode
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
?terminate@@YAXXZ
__crtSetUnhandledExceptionFilter
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
_invoke_watson
_controlfp_s
_except_handler4_common
exit
puts
fflush
__iob_func
strchr
_strdup
memset
fgets

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1c41f0e00ecbe9638436fe78d4e87a2d

Headers

DLL Characteristics

File Characteristics

Imports

intl

libpq

kernel32

msvcr120

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 940B

.rsrc Size: 72KB - Virtual size: 76KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 940B

.rsrc
Size: 72KB - Virtual size: 76KB