8df085d8f8242a8c162f1974f4712d74cda1d8ce548bcf6cf2b52252cd9ce74f

General

Target

8df085d8f8242a8c162f1974f4712d74cda1d8ce548bcf6cf2b52252cd9ce74f
Size

311KB
MD5

e2a171282882c18780be214399c71780
SHA1

05a0c6a64cb2a626cd13e25646fb4d14a0327fd4
SHA256

8df085d8f8242a8c162f1974f4712d74cda1d8ce548bcf6cf2b52252cd9ce74f
SHA512

8fcc09b37f75cea1aeceb196cd313fa53f63612eb4f7fec4d39dd4bc7acaac9bb60537dd0dd4f56531451d7d5a01659770066918cba0b541a616bac91d534278
SSDEEP

6144:vLw7TPNGPsl98GYQqdei2ObDyZa4NNCI95Sqjg0:vLmosfYQwe6y88CIWqj

Score

N/A

Malware Config

Signatures

Files

8df085d8f8242a8c162f1974f4712d74cda1d8ce548bcf6cf2b52252cd9ce74f
.exe windows x86

926b1a8e599f72ae14bc998fd8941e0c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FindVolumeClose
GetDriveTypeA
GetPrivateProfileSectionA
GetCurrentProcess
GetStringTypeA
GetCurrentThread
GetVersionExA
HeapFree
VirtualProtectEx
RemoveDirectoryA
GetStdHandle
LoadLibraryA
GetPrivateProfileIntA
GetFileAttributesW
CreateDirectoryW
CloseHandle
GlobalFlags
DeviceIoControl
GetFileAttributesW
CreateEventA
GlobalLock

shell32

DuplicateIcon
ShellAboutA
StrChrA
ExtractIconA
DragAcceptFiles
DllUnregisterServer
SHGetSettings
DllUnregisterServer
ShellMessageBoxA
DragFinish
DragQueryFileA
SHGetMalloc
SHFree

odbccp32

SQLInstallDriver
SQLInstallODBC
SQLConfigDataSource
SQLGetAvailableDrivers

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

926b1a8e599f72ae14bc998fd8941e0c

Headers

File Characteristics

Imports

kernel32

shell32

odbccp32

uxtheme

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 508B

.rsrc Size: 302KB - Virtual size: 301KB

.import Size: 512B - Virtual size: 372B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 508B

.rsrc
Size: 302KB - Virtual size: 301KB

.import
Size: 512B - Virtual size: 372B