65134312808714f049b93691f378babf7d26e9a97f8857ffdb9ccf41e105fab3

Sharing

Copy URL Twitter E-mail

General

Target

65134312808714f049b93691f378babf7d26e9a97f8857ffdb9ccf41e105fab3
Size

835KB
MD5

000f1b033f24aa8a06b37bb1a0b7ba30
SHA1

6b7b8a69e47d27dfffd8e24daa68c4e6f57f4ea5
SHA256

65134312808714f049b93691f378babf7d26e9a97f8857ffdb9ccf41e105fab3
SHA512

b4fdc674d48dc9da0a4ca23ff8769d868794314901e5a892414af3d990a56a506cda067c1e7c0d6537b88a7928c2d8c453df935cfe8e0822ffc86bfb24bc2c26
SSDEEP

24576:pimmJS1T0ohRLzsDVRUlo7uCfE2xcDxOPmFILk:pbeS1TBhRLYDk27uaxcFIm2g

Score

N/A

Malware Config

Signatures

Files

65134312808714f049b93691f378babf7d26e9a97f8857ffdb9ccf41e105fab3
.exe windows x86

f11785f510349f32f8eee43b9a017ed7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

sqlunirl

_LogonUser_@24
_DispatchMessage_@4
_EnumResourceLanguages_@20
_CharPrev_@8
_CreateProcessAsUser_@44
_NDdeGetShareSecurity_@24
_GetBinaryType_@8
_DeleteFile@4
_SetVolumeLabel_@8
_WriteConsoleInput_@16
_OpenFileMapping_@12
_DefFrameProc_@20
_LoadMenuIndirect_@4
_GetClassName_@12
_FindResource@12
_LoadString@16
_ShellExecute_@24
ConvertMultiSZNameToW
_DialogBoxIndirectParam_@20
_CharToOem_@8
_CharUpperBuff_@8
_GetEnvironmentVariable_@12

imm32

ImmActivateLayout
ImmRegisterWordW
ImmReleaseContext
ImmGetCompositionFontA
ImmSetCompositionStringA
ImmUnlockClientImc
ImmGetOpenStatus
ImmLoadIME
ImmGetStatusWindowPos
ImmEnumRegisterWordW
ImmGetIMCCLockCount
ImmInstallIMEW
ImmSetCompositionStringW
ImmSetCompositionFontA
ImmLoadLayout

ntprint

PSetupGetLocalDataField
PSetupSelectDeviceButtons
PSetupThisPlatform
PSetupDriverInfoFromName
PSetupFreeMem
ClassInstall32
PSetupInstallPrinterDriver
PSetupDestroyDriverInfo3
PSetupInstallInboxDriverSilently
PSetupShowBlockedDriverUI
PSetupCreateDrvSetupPage
PSetupGetSelectedDriverInfo
PSetupFreeDrvField
PSetupInstallICMProfiles
PSetupAssociateICMProfiles
PSetupDestroyPrinterDeviceInfoList
PSetupGetDriverInfo3
PSetupIsCompatibleDriver
PSetupBuildDriversFromPath
PSetupProcessPrinterAdded
PSetupIsTheDriverFoundInInfInstalled
PSetupCreatePrinterDeviceInfoList
PSetupCreateMonitorInfo
PSetupPreSelectDriver
PSetupSelectDriver
PSetupGetPathToSearch
PSetupSetSelectDevTitleAndInstructions
PSetupDestroySelectedDriverInfo
PSetupIsDriverInstalled
PSetupInstallMonitor

esent

JetBeginExternalBackupInstance
JetGetTruncateLogInfoInstance
JetTruncateLog
JetCommitTransaction@8
JetMakeKey
JetSeek
JetSetCurrentIndex
JetCloseTable
JetRollback
JetGetDatabaseInfo
JetGetLock
JetGrowDatabase
JetUpgradeDatabase
JetDeleteIndex
JetBackup
JetRetrieveKey
JetBeginTransaction@4

opengl32

glPointSize
glFlush
glRasterPos2fv
glMapGrid2d
glGetTexGendv
glRasterPos4iv
glRasterPos2iv
glColor4usv
glIsTexture
glColor4b
glLightModeliv
glColor3iv
glRasterPos2s
glNormal3b
glScaled
glStencilFunc

kernel32

GetConsoleWindow
OpenJobObjectW
GetLocaleInfoW
ReadConsoleOutputW
CreateMemoryResourceNotification
RemoveDirectoryW
LoadLibraryW
FatalAppExitA
GetSystemWindowsDirectoryW
FindFirstFileExA
SetCommState
GetCurrentThread
GetModuleHandleW
GetShortPathNameA
GetVolumeNameForVolumeMountPointW
CreateJobSet
ReleaseSemaphore
RegisterConsoleOS2
FindNextFileW
SetConsoleInputExeNameW
QueryPerformanceCounter
AddLocalAlternateComputerNameW
lstrcpynW
GetStringTypeExA

Sections

.text
Size: 369KB - Virtual size: 368KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 189KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f11785f510349f32f8eee43b9a017ed7

Headers

DLL Characteristics

File Characteristics

Imports

sqlunirl

imm32

ntprint

esent

opengl32

kernel32

Sections

.text Size: 369KB - Virtual size: 368KB

.rdata Size: 98KB - Virtual size: 98KB

.data Size: 189KB - Virtual size: 1.6MB

.rsrc Size: 176KB - Virtual size: 176KB

.reloc Size: 1024B - Virtual size: 860B

.text
Size: 369KB - Virtual size: 368KB

.rdata
Size: 98KB - Virtual size: 98KB

.data
Size: 189KB - Virtual size: 1.6MB

.rsrc
Size: 176KB - Virtual size: 176KB

.reloc
Size: 1024B - Virtual size: 860B