2a4eff6ee4ae1cef9871bec26b79731d231ac5d56442b5caf1a3a286c0bd538a

Sharing

Copy URL

Twitter E-mail

General

Target

2a4eff6ee4ae1cef9871bec26b79731d231ac5d56442b5caf1a3a286c0bd538a
Size

827KB
MD5

08bc3c9b6f32aa322128e9ed19a2bbaa
SHA1

df5f40062559bf850f0b4d53e58139f7014e4669
SHA256

2a4eff6ee4ae1cef9871bec26b79731d231ac5d56442b5caf1a3a286c0bd538a
SHA512

bdc1997da7f2c67b387968e2805804ee9fbe86ee016f376ea5839eb2b75f7b856c72554bce0dce39144425c6432cdc963d34692e6a9069ecc8235a2939652df6
SSDEEP

12288:H47/s+WCHUiI4HGcFHByXOhXiRS/GTpELfRMXm5yf2RIF9z4wK2UOkiEWXSMTWlj:HyUN6HGIyXQNKmf+Xpfdnz5FXSATaok

Score

N/A

Malware Config

Signatures

Files

2a4eff6ee4ae1cef9871bec26b79731d231ac5d56442b5caf1a3a286c0bd538a
.exe windows x86

91bba5541e5d5c5a85d4b4708ad5be47

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msdart

?sm_dblDfltSpinAdjFctr@CSmallSpinLock@@1NA
?IsReadLocked@CCritSec@@QBE_NXZ
?RemoveHead@CDoubleList@@QAEQAVCListEntry@@XZ
?WriteUnlock@CCritSec@@QAEXXZ
?_InsertThisIntoGlobalList@CLKRHashTable@@AAEXXZ
??0CDoubleList@@QAE@XZ
?_DeleteKey@CLKRLinearHashTable@@AAE?AW4LK_RETCODE@@KK@Z
?IsWin2k@CMdVersionInfo@@SAHXZ
?IsValid@CLKRLinearHashTable@@QBE_NXZ
?WriteLock@CReaderWriterLock2@@QAEXXZ
?GetStatistics@CLKRLinearHashTable@@QBE?AVCLKRHashTableStats@@XZ
?_ReadLockSpin@CReaderWriterLock3@@AAEXW4SPIN_TYPE@1@@Z
?WriteUnlock@CLKRHashTable@@QBEXXZ
??0CFakeLock@@QAE@XZ
?WriteLock@CSmallSpinLock@@QAEXXZ
?sm_llGlobalList@CLKRLinearHashTable@@0VCLockedDoubleList@@A
??4CReaderWriterLock@@QAEAAV0@ABV0@@Z
?TryReadLock@CReaderWriterLock3@@QAE_NXZ
??4CFakeLock@@QAEAAV0@ABV0@@Z
?_CmpExch@CReaderWriterLock@@AAE_NJJ@Z
?sm_dblDfltSpinAdjFctr@CCritSec@@1NA

gdi32

BeginPath
GetFontAssocStatus
BRUSHOBJ_ulGetBrushColor
CreateCompatibleBitmap
BRUSHOBJ_hGetColorTransform
FillRgn
FONTOBJ_vGetInfo
GetStringBitmapW
GetRgnBox
GetFontData
EngDeletePath
GetEnhMetaFileBits
GetStringBitmapA
GdiEntry15
GetRasterizerCaps
Polyline
GdiGradientFill
RectInRegion
GdiAddGlsBounds
GdiFlush
GdiFullscreenControl
EngStretchBltROP
EngStretchBlt
CancelDC
GdiSetAttrs

traffic

TcCloseInterface
TcGetFlowNameA
TcAddFlow
TcGetFlowNameW
TcSetFlowW
TcDeleteFilter
TcDeleteFlow
TcQueryFlowW
TcAddFilter
TcOpenInterfaceA
TcQueryInterface
TcQueryFlowA
TcRegisterClient
TcSetFlowA
TcDeregisterClient
TcModifyFlow
TcOpenInterfaceW
TcEnumerateFlows
TcEnumerateInterfaces
TcSetInterface

kernel32

ReleaseMutex
GetCurrentProcess
GetPrivateProfileSectionNamesA
EnumDateFormatsExA
CreateConsoleScreenBuffer
GetTimeZoneInformation
GetUserDefaultLCID
CreateRemoteThread
FlushFileBuffers
LoadLibraryW
FoldStringW
GetTapePosition
InterlockedIncrement
SetLastError
SetConsoleWindowInfo
FreeResource
SetVolumeMountPointA
GetTickCount
GetNumberOfConsoleInputEvents
QueryDosDeviceW
TerminateJobObject
SetErrorMode
RegisterConsoleIME

sqlunirl

_InsertMenu_@20
_GetModuleFileName@12
_NDdeSetTrustedShare_@12
_PropertySheet_@4
_CreateStatusWindow_@16
_CallMsgFilter_@8
_RegisterClipboardFormat_@4
_GetClassLong_@8
_SendNotifyMessage_@16
_DeviceCapabilities_@20
_ReplaceText_@4
_PolyTextOut_@12
_RegQueryValueEx_@24
_LoadCursor@8
_FindNextFile_@8
_ReadConsoleInput_@16
_ObjectPrivilegeAuditAlarm_@24

Sections

.text
Size: 376KB - Virtual size: 376KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91bba5541e5d5c5a85d4b4708ad5be47

Headers

DLL Characteristics

File Characteristics

Imports

msdart

gdi32

traffic

kernel32

sqlunirl

Sections

.text Size: 376KB - Virtual size: 376KB

.rdata Size: 131KB - Virtual size: 130KB

.data Size: 173KB - Virtual size: 1.6MB

.rsrc Size: 144KB - Virtual size: 144KB

.reloc Size: 1024B - Virtual size: 852B

.text
Size: 376KB - Virtual size: 376KB

.rdata
Size: 131KB - Virtual size: 130KB

.data
Size: 173KB - Virtual size: 1.6MB

.rsrc
Size: 144KB - Virtual size: 144KB

.reloc
Size: 1024B - Virtual size: 852B