913147e23f445fa541d25fbd8a44710f265a062cb4dd205dd7cc73585d26f335

Sharing

Copy URL Twitter E-mail

General

Target

913147e23f445fa541d25fbd8a44710f265a062cb4dd205dd7cc73585d26f335
Size

846KB
MD5

84a2cd696f32ac18078ebe0295fcdc92
SHA1

e733683a08e7d01033e9d893701d341b7b54e0ef
SHA256

913147e23f445fa541d25fbd8a44710f265a062cb4dd205dd7cc73585d26f335
SHA512

b466e371ffeb964fc52ebb1a386a3628908690fdaf95710562d6bb3205a00496b1da480401d9b243975c831dae1ed8f60f5597491048bc0d8b121f9ba1bdfa8f
SSDEEP

24576:RhOgcoQGbDMlbfy8wXkyechgAuDKxJaHMNIBYh:ZGG3ayvXJmdB

Score

N/A

Malware Config

Signatures

Files

913147e23f445fa541d25fbd8a44710f265a062cb4dd205dd7cc73585d26f335
.exe windows x86

b4b35c47a5c822c419e0588e6770b47a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

usp10

ScriptStringAnalyse
ScriptApplyDigitSubstitution
ScriptString_pSize
UspAllocTemp
ScriptApplyLogicalWidth
ScriptBreak
ScriptTextOut
ScriptCacheGetHeight
ScriptShape
ScriptCPtoX
UspAllocCache
ScriptStringValidate
ScriptLayout
ScriptGetGlyphABCWidth
ScriptStringXtoCP
ScriptGetCMap
ScriptGetProperties
ScriptString_pcOutChars
ScriptRecordDigitSubstitution

adsldpc

LdapReadAttribute
ADSIFreeColumn
MapADSTypeToLDAPType
GetLDAPTypeName
ADSIGetFirstRow
ADsSetLastError
LdapGetSyntaxOfAttributeOnServer
LdapGetSubSchemaSubEntryPath
LdapCompareExt
LdapTypeToAdsTypeUTCTime
SchemaGetPropertyInfoByIndex
BuildADsPathFromLDAPPath2
ADsCreateDSObjectExt
LdapCacheAddRef
FindSearchTableIndex
ADsWriteClassDefinition
FreeObjectInfo
ADSIModifyRdn
ConvertSidToString
ADsDeleteDSObject
ADSIGetNextColumnName
LdapSearchExtS
LdapSearchS
LdapValueFree
InitObjectInfo
GetSyntaxOfAttribute
SchemaGetClassInfo
AdsTypeFreeAdsObjects
ADSIDeleteDSObject
ADSIOpenDSObject
BuildADsParentPathFromObjectInfo2
ADsCreateAttributeDefinition
GetDisplayName
LdapDeleteS
ADsObject
LdapTypeCopyConstruct
ADsEncodeBinaryData
LdapMakeSchemaCacheObsolete
ADSIAbandonSearch
ADsGetColumn
LdapGetValuesLen
LdapSearchInitPage
LdapReadAttributeFast
LdapTypeBinaryToString
ADsSetObjectAttributes

kernel32

AllocConsole
Module32First
FindFirstVolumeMountPointA
GetDiskFreeSpaceExW
IsValidCodePage
VirtualAlloc
ReadFile
OutputDebugStringA
VirtualFreeEx
GetUserDefaultUILanguage
SetFileApisToOEM
OpenProfileUserMapping
LoadLibraryA
SetFileApisToANSI
GetNextVDMCommand
SetConsoleOutputCP
FreeEnvironmentStringsA
SetConsoleCursorInfo
GetConsoleNlsMode
EnumUILanguagesW
BindIoCompletionCallback
OpenThread
FlushInstructionCache
GetStringTypeExW
HeapSummary
WriteConsoleInputVDMA
GlobalGetAtomNameA
HeapFree
UnregisterConsoleIME
IsDBCSLeadByte
BeginUpdateResourceA
FreeResource
RestoreLastError
GlobalAddAtomW
GetFileSize
QueryDepthSList
DebugBreak
TermsrvAppInstallMode
OpenJobObjectA
GlobalFindAtomW
CreateTapePartition

odbccp32

SQLInstallDriverW
SQLInstallDriverExW
SQLInstallODBC
SQLGetAvailableDrivers
SelectTransDlg
SQLValidDSNW
SQLGetPrivateProfileStringW
SQLInstallDriverEx
SQLInstallDriver
SQLRemoveTranslator
SQLGetAvailableDriversW
SQLConfigDataSourceW
SQLCreateDataSourceExW
SQLWriteDSNToIni
SQLGetConfigMode
SQLInstallTranslatorEx
SQLRemoveDriverW
SQLValidDSN
SQLInstallerErrorW
SQLGetPrivateProfileString

Sections

.text
Size: 746KB - Virtual size: 746KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4b35c47a5c822c419e0588e6770b47a

Headers

DLL Characteristics

File Characteristics

Imports

usp10

adsldpc

kernel32

odbccp32

Sections

.text Size: 746KB - Virtual size: 746KB

.rdata Size: 91KB - Virtual size: 90KB

.data Size: 5KB - Virtual size: 1.4MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 980B

.text
Size: 746KB - Virtual size: 746KB

.rdata
Size: 91KB - Virtual size: 90KB

.data
Size: 5KB - Virtual size: 1.4MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 980B