15aa2ed2ae1e8f9bf2294e6ca299b945291f5338733e324ea305ce30c786af4e

Sharing

Copy URL

Twitter E-mail

General

Target

15aa2ed2ae1e8f9bf2294e6ca299b945291f5338733e324ea305ce30c786af4e
Size

72KB
MD5

0e6b16b81e573f05041f98f60008cc8e
SHA1

19272d0f5655f64ef83ca46e135fd452a22c0b2d
SHA256

15aa2ed2ae1e8f9bf2294e6ca299b945291f5338733e324ea305ce30c786af4e
SHA512

5574c353865a67ca964004f047ec676339a1d3777ba40b1579143260bc19e1c567542a30d27d0246355be1cd4067670704ca3edf12c1187fe84b989049ce3309
SSDEEP

768:JM47afP+CIOdTBOsps+ZnLSADVe61rguZXN8/vM7bkrefb9TqsDYbQ5TM1feJNTb:SEUdTXZnLSAD8GXN+I7fJ+aCl1fez

Score

N/A

Malware Config

Signatures

Files

15aa2ed2ae1e8f9bf2294e6ca299b945291f5338733e324ea305ce30c786af4e
.exe windows x86

41dac52ff3b36a0df88777e080eb3039

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
OutputDebugStringA
GetVersionExW
GetSystemDefaultLCID
HeapDestroy
MultiByteToWideChar
GetComputerNameA
HeapReAlloc
GetCurrentThread
HeapAlloc
EnterCriticalSection
HeapFree
LeaveCriticalSection
GetModuleHandleW
HeapCompact
HeapCreate
InitializeCriticalSection
DeleteCriticalSection
FormatMessageW
WideCharToMultiByte
GetCommandLineW
GetCommandLineA
GetComputerNameW
GetModuleFileNameA
FormatMessageA
GetLastError
GetCurrentProcess
GetModuleFileNameW

msvcrt

_except_handler3
_controlfp
__p__commode
__set_app_type
__p__fmode
_initterm
_adjust_fdiv
__setusermatherr
exit
__getmainargs
__p___initenv
_exit
_XcptFilter
_purecall
memcmp
_CxxThrowException
_onexit
memcpy
wcscmp
_wcsicmp
_ltow
??1type_info@@UAE@XZ
wcsncmp
_wcsnicmp
strlen
strcpy
wcsncpy
__CxxFrameHandler
__dllonexit
_vsnwprintf
wcslen
strcmp
printf

ole32

CoCreateInstance
CoInitializeEx
CoUninitialize

oleaut32

SetErrorInfo
SysFreeString
GetErrorInfo
VariantClear

sqlresld

SQLUIUnloadResourceDLL
SQLUILoadResourceDLL

user32

LoadStringW
LoadStringA

advapi32

GetUserNameA
OpenThreadToken
LookupAccountSidW
GetTokenInformation
OpenProcessToken
GetUserNameW

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

41dac52ff3b36a0df88777e080eb3039

Headers

File Characteristics

Imports

kernel32

msvcrt

ole32

oleaut32

sqlresld

user32

advapi32

Sections

.text Size: 16KB - Virtual size: 14KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 332B

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 16KB - Virtual size: 14KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 332B

.rsrc
Size: 40KB - Virtual size: 39KB