afdea592401afd0390501e4fa8508b316be589354a1fe033217d61e93e279a23

Sharing

Copy URL Twitter E-mail

General

Target

afdea592401afd0390501e4fa8508b316be589354a1fe033217d61e93e279a23
Size

853KB
MD5

a05a909a53716561f5a31d96e900b7f0
SHA1

01562dbd6dfdbd84aa67aa66ac23a0fc6f358901
SHA256

afdea592401afd0390501e4fa8508b316be589354a1fe033217d61e93e279a23
SHA512

1504f4272141149676f09d82fb2bcd2c89a92dcd45923a1e292546115e7d3e921f5143450050910cf6b8b8ad7115c02e702e3693aa9e05228f1ae35cb996c200
SSDEEP

12288:dtsPFktPeGi6qTHMl4Upn86F0xy1MZDNiAmPFaFANxxoofohIBHvBZWrTs9tAh4v:0PWPeGsTMlH8dk0kmPhePIw9tAys

Score

N/A

Malware Config

Signatures

Files

afdea592401afd0390501e4fa8508b316be589354a1fe033217d61e93e279a23
.exe windows x86

f3d310ad9f566f5875f39c6e4a0004e8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

odbc32

SQLExecute
SQLDriverConnectA
SQLGetDescField
SQLGetDiagRecA
SQLCloseCursor
ODBCSetTryWaitValue
SQLGetStmtAttrA
SQLSetConnectOptionW
SQLBrowseConnect
SQLNumParams
SQLColumnPrivilegesW
SQLGetConnectAttr
SQLSetConnectAttr
SQLGetDiagRec
SQLSetStmtAttrA
SQLSetConnectAttrA
SQLDataSourcesW
SQLProcedureColumns
CursorLibLockDbc
SQLGetDescFieldA
SQLGetDiagFieldW
SQLSetEnvAttr
SQLPrimaryKeys
SQLGetConnectOption
SQLSetScrollOptions
SQLTransact
SQLBindParameter
SQLProcedureColumnsW
SQLColAttributeW

kernel32

MultiByteToWideChar
SwitchToThread
SetCommConfig
FindActCtxSectionStringW
HeapQueryInformation
GetComputerNameExW
GetCurrentProcessId
UTRegister
CreatePipe
Heap32ListFirst
GetGeoInfoA
CreateTimerQueue
CloseProfileUserMapping
RequestDeviceWakeup
LocalSize
ReadFile
FreeEnvironmentStringsW
GlobalAlloc
SetCalendarInfoA
Module32NextW
GlobalFindAtomW
BindIoCompletionCallback
GetStringTypeExW
SetComputerNameW
EnumResourceLanguagesA
BackupRead
VirtualAlloc
GetACP
HeapAlloc
GetConsoleMode
SetComputerNameExA
SetThreadPriority
GetVolumePathNamesForVolumeNameW
GetConsoleCursorMode
ReadProcessMemory
RemoveVectoredExceptionHandler
DeleteVolumeMountPointA
GetConsoleScreenBufferInfo
BuildCommDCBAndTimeoutsW
WriteProfileStringA
GetOEMCP
SetLocaleInfoA
ScrollConsoleScreenBufferW
DeleteFileA
FindNextVolumeA
GetComputerNameW
LoadLibraryA
GetVersionExA
RemoveDirectoryA
CreateToolhelp32Snapshot
GetPrivateProfileIntA
FreeUserPhysicalPages
FlushFileBuffers
BackupWrite
GetExpandedNameA
CreateFiber
GetConsoleFontSize
GetLocaleInfoW
ScrollConsoleScreenBufferA
FoldStringA
BaseDumpAppcompatCache
ConvertFiberToThread

cfgmgr32

CM_Get_First_Log_Conf_Ex
CM_Get_HW_Prof_FlagsA
CM_Create_Range_List
CM_Query_Arbitrator_Free_Size_Ex
CM_Get_Depth
CM_Query_And_Remove_SubTree_ExW
CM_Set_DevNode_Registry_PropertyW
CM_Get_Device_ID_List_SizeW
CM_Query_Resource_Conflict_List
CM_Get_Device_ID_ListW
CM_Create_DevNode_ExA
CM_Delete_DevNode_Key
CM_Add_Empty_Log_Conf_Ex
CM_Get_Parent_Ex
CM_Get_Hardware_Profile_Info_ExA
CM_Get_Class_Registry_PropertyW
CM_Open_Class_Key_ExW
CM_Get_Hardware_Profile_InfoW
CM_Enable_DevNode_Ex
CM_Get_Next_Res_Des_Ex
CM_Get_DevNode_Registry_Property_ExW
CM_Detect_Resource_Conflict_Ex
CM_Get_Device_Interface_List_SizeA
CM_Disable_DevNode
CM_Request_Eject_PC
CM_Get_Class_NameW
CM_Open_Class_KeyA
CM_Register_Device_Interface_ExW
CM_Set_DevNode_Problem
CM_Get_Device_Interface_List_ExA
CM_Modify_Res_Des
CM_Get_Device_Interface_List_Size_ExA
CM_Get_Resource_Conflict_Count
CM_Query_And_Remove_SubTreeW
CM_Get_Device_ID_List_ExA
CMP_Report_LogOn

Sections

.text
Size: 327KB - Virtual size: 327KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 337KB - Virtual size: 337KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 185KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3d310ad9f566f5875f39c6e4a0004e8

Headers

DLL Characteristics

File Characteristics

Imports

odbc32

kernel32

cfgmgr32

Sections

.text Size: 327KB - Virtual size: 327KB

.rdata Size: 337KB - Virtual size: 337KB

.data Size: 185KB - Virtual size: 1.6MB

.rsrc Size: 1024B - Virtual size: 1024B

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 327KB - Virtual size: 327KB

.rdata
Size: 337KB - Virtual size: 337KB

.data
Size: 185KB - Virtual size: 1.6MB

.rsrc
Size: 1024B - Virtual size: 1024B

.reloc
Size: 1024B - Virtual size: 1024B