d8d6a841f7dadafb0d1f6c1b7b2f5e5d9e5c481561867b028f5a99c4f51af27f

General

Target

d8d6a841f7dadafb0d1f6c1b7b2f5e5d9e5c481561867b028f5a99c4f51af27f
Size

604KB
MD5

fe01ccf326f00811bad8dc4529a84743
SHA1

b308c7d6cc9bc6b5707c5c7cd5b20d0c3c918613
SHA256

d8d6a841f7dadafb0d1f6c1b7b2f5e5d9e5c481561867b028f5a99c4f51af27f
SHA512

c11c9682a9a192040ea38086070a05e6768f9014c02eb013ab637a00576e019059a604199083f05c72367504b5599d7347173383f9787e10e42c2e51ca643a86
SSDEEP

12288:2Bp+S1QfS0FUdCTzhlx+Wp/9h5STuilpdlKPVac:Qyf4dC1l9h5SyilblSVac

Score

N/A

Malware Config

Signatures

Files

d8d6a841f7dadafb0d1f6c1b7b2f5e5d9e5c481561867b028f5a99c4f51af27f
.exe windows x86

f093b4fbba3b516ce63797374f1d7fd9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

rtm

BestMatchInTable

odbc32

SQLGetDescRec
SQLGetDescRecA
SQLGetDescRecW
SQLGetDiagField
SQLGetDiagFieldA
SQLGetDiagFieldW
SQLGetDiagRec
SQLGetDiagRecA
SQLGetDiagRecW
SQLGetEnvAttr
SQLGetFunctions
SQLGetInfo
SQLGetInfoA
SQLGetInfoW
SQLGetStmtAttr
SQLGetStmtAttrA
SQLGetStmtAttrW
SQLGetStmtOption
SQLGetTypeInfo
SQLGetTypeInfoA
SQLGetTypeInfoW
SQLMoreResults
SQLNativeSql
SQLNativeSqlA
SQLNativeSqlW
SQLNumParams
SQLParamData
SQLParamOptions
SQLPrepare
SQLPrepareA
SQLPrepareW

kernel32

ReadFile
GetLastError
GetWindowsDirectoryA
RtlUnwind
GetConsoleAliasesLengthA
GetConsoleFontInfo
GetConsoleFontSize
SetCommMask
Process32First
GetWriteWatch
CreateFileA

duser

AddGadgetMessageHandler
AttachWndProcA
AttachWndProcW
AutoTrace
DUserBuildGadget
DUserCastClass
DUserCastDirect
DUserCastHandle
DUserDeleteGadget
DUserFindClass
DUserRegisterStub
DUserBuildGadget
DUserCastClass
DUserCastDirect
DUserCastHandle
DUserDeleteGadget
DUserFindClass

dsprop

ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg

Sections

.text
Size: 28KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 206KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 549KB - Virtual size: 552KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f093b4fbba3b516ce63797374f1d7fd9

Headers

File Characteristics

Imports

rtm

odbc32

kernel32

duser

dsprop

Sections

.text Size: 28KB - Virtual size: 35KB

.data Size: 14KB - Virtual size: 206KB

.rsrc Size: 549KB - Virtual size: 552KB

.text
Size: 28KB - Virtual size: 35KB

.data
Size: 14KB - Virtual size: 206KB

.rsrc
Size: 549KB - Virtual size: 552KB