d999949bbac879d40ed5220540b2608ad25b3f0005a91c7348d6b4beec90c3aa

Sharing

Copy URL Twitter E-mail

General

Target

d999949bbac879d40ed5220540b2608ad25b3f0005a91c7348d6b4beec90c3aa
Size

364KB
MD5

06f054a752e28ae1579ac2bb8ef334f1
SHA1

11824b11e0c2a8d7f06b577fccc29f477082694b
SHA256

d999949bbac879d40ed5220540b2608ad25b3f0005a91c7348d6b4beec90c3aa
SHA512

ce47da4e3da5296665ebe8f8e9a96c33d0dda2d94785ad8b63fe08439e873e9b2e4ed1e233f5ab12c13e83f44bdc037b9f8e8c2c7671efb65949d922ae338926
SSDEEP

6144:SJyDU46SwiOgLorhld+5aQ2NIqwzZaWRijnDhp4Gk3RzAa2Y1NuKjzCo6osu:SJywOLOv9D7NxhTR+RRHv77j

Score

N/A

Malware Config

Signatures

Files

d999949bbac879d40ed5220540b2608ad25b3f0005a91c7348d6b4beec90c3aa
.exe windows x86

5c4028cedd2a0b5d4676655d4199bf07

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EndDoc
CombineRgn
SetRectRgn
AbortDoc
SetAbortProc
GetDeviceCaps

odbc32

ord4
ord5
ord127
ord107
ord111
ord12
ord13
ord16
ord117
ord18
ord119
ord20
ord121
ord78
ord140
ord141
ord147
ord48
ord49
ord150
ord152
ord153
ord154
ord155
ord156
ord58
ord26
ord28
ord29
ord31
ord132
ord133
ord134
ord135
ord136

kernel32

GetSystemInfo
VirtualProtect
SetStdHandle
SetFilePointer
CloseHandle
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetLocaleInfoA
FlushFileBuffers
LoadLibraryA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
InitializeCriticalSection
VirtualQuery
InterlockedExchange
HeapSize
QueryPerformanceCounter
CreateFileA
GetWindowsDirectoryA
GetSystemTime
OpenProcess
GetVersionExA
GetModuleHandleA
GetDateFormatA
SizeofResource
LockResource
CreateProcessA
PrepareTape
VirtualProtectEx
GetSystemDirectoryA
HeapReAlloc
HeapAlloc
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
HeapFree
VirtualAlloc
IsBadWritePtr
TlsAlloc
SetLastError
GetCurrentThreadId
GetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
SetUnhandledExceptionFilter
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 184KB - Virtual size: 879KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c4028cedd2a0b5d4676655d4199bf07

Headers

File Characteristics

Imports

gdi32

odbc32

kernel32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 132KB - Virtual size: 131KB

.data Size: 184KB - Virtual size: 879KB

.rsrc Size: 4KB - Virtual size: 928B

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 132KB - Virtual size: 131KB

.data
Size: 184KB - Virtual size: 879KB

.rsrc
Size: 4KB - Virtual size: 928B

.reloc
Size: 8KB - Virtual size: 6KB