718edd378e87e689414b303b72a30765db4691c9ed42d72231b587182530613f

Sharing

Copy URL Twitter E-mail

General

Target

718edd378e87e689414b303b72a30765db4691c9ed42d72231b587182530613f
Size

68KB
MD5

073ad1cc7b872c7392aca31ac0cdfc20
SHA1

17d0f905d7bf9581460713ef86033af2cda87819
SHA256

718edd378e87e689414b303b72a30765db4691c9ed42d72231b587182530613f
SHA512

c36f795316fddc3bd0d2d40a4397203eaa824b526b20cc665686b2437f1695fe1c7925d5b0a46d1ba19b313d054da90826ee9dc2802a18fca0e348017ea7282f
SSDEEP

768:3kX1eZOW0+SNzOZZNxwqUE5cp1OmP7RlLPsJLWRQlB7/DUN56odfkhTP36CiHP6H:3UWmuZNxpep1XFl7Qblpk56Wkhr3mTU

Score

N/A

Malware Config

Signatures

Files

718edd378e87e689414b303b72a30765db4691c9ed42d72231b587182530613f
.exe windows x86

9599163578534c8226c7307fff7af1e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
OutputDebugStringA
InterlockedIncrement
GetVersionExW
GetSystemDefaultLCID
InterlockedDecrement
HeapDestroy
MultiByteToWideChar
FormatMessageA
GetComputerNameA
GetCurrentThread
HeapFree
HeapAlloc
EnterCriticalSection
HeapCompact
LeaveCriticalSection
GetModuleHandleW
DeleteCriticalSection
HeapCreate
InitializeCriticalSection
HeapReAlloc
WideCharToMultiByte
GetCommandLineW
GetCommandLineA
GetComputerNameW
FormatMessageW
GetLastError
GetCurrentProcess
CloseHandle
GetModuleFileNameW
GetModuleFileNameA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
_XcptFilter
__dllonexit
_exit
exit
memcmp
memcpy
_vsnwprintf
_onexit
_CxxThrowException
_wcsicmp
_ltow
??1type_info@@UAE@XZ
wcsncmp
_wcsnicmp
strlen
strcpy
wcsncpy
printf
iswspace
wcslen
_purecall
wcscmp
strcmp
__CxxFrameHandler

ole32

OleUninitialize
CoCreateInstance
OleInitialize
CoUninitialize

oleaut32

GetErrorInfo
SysFreeString
SetErrorInfo
VariantClear

sqlresld

SQLUIUnloadResourceDLL
SQLUILoadResourceDLL

user32

LoadStringW
LoadStringA

advapi32

GetUserNameW
LookupAccountSidW
GetUserNameA
OpenProcessToken
OpenThreadToken
GetTokenInformation

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9599163578534c8226c7307fff7af1e3

Headers

File Characteristics

Imports

kernel32

msvcrt

ole32

oleaut32

sqlresld

user32

advapi32

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 332B

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 332B

.rsrc
Size: 32KB - Virtual size: 32KB