1216987e1d454f9b544a1d19d314715bdc05e98d4df545c2f6bf3aaa788e10f9

General

Target

1216987e1d454f9b544a1d19d314715bdc05e98d4df545c2f6bf3aaa788e10f9
Size

597KB
MD5

aaee2220ecd5421c8412faee90c2c194
SHA1

07e56e887e78e04452e3569b67043e89a2b8e415
SHA256

1216987e1d454f9b544a1d19d314715bdc05e98d4df545c2f6bf3aaa788e10f9
SHA512

4607eb3e03a3937e35eb96313fe827106f952b45b4669678d631a30e7cf56605d61eaf0bb388be9a6af34e40ee55fa0139411f45f3ec1871c0be610a436211d6
SSDEEP

12288:X3xNbAEjdq6XGaULgnwu/guVNWOgPdY8vcBV3lwMoOaZ:R1AEjcoULtu/fkPy8v43CMoO

Score

N/A

Malware Config

Signatures

Files

1216987e1d454f9b544a1d19d314715bdc05e98d4df545c2f6bf3aaa788e10f9
.exe windows x86

fe453166779ae9590e4e3cb92411b986

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

rtm

BestMatchInTable

odbc32

SQLGetDescRec
SQLGetDescRecA
SQLGetDescRecW
SQLGetDiagField
SQLGetDiagFieldA
SQLGetDiagFieldW
SQLGetDiagRec
SQLTablesA
SQLGetDiagRecW
SQLGetEnvAttr
SQLGetFunctions
SQLGetInfo
SQLGetInfoA
SQLGetInfoW
SQLGetStmtAttr
SQLGetStmtAttrA
SQLGetStmtAttrW
SQLGetStmtOption
SQLGetTypeInfo
SQLGetTypeInfoA
SQLGetTypeInfoW
SQLMoreResults
SQLNativeSql
SQLNativeSqlA
SQLNativeSqlW
SQLNumParams
SQLParamData
SQLParamOptions
SQLPrepare
SQLPrepareA
SQLPrepareW

kernel32

ReadFile
GetLastError
GetEnvironmentVariableA
RtlUnwind
GetConsoleDisplayMode
GetConsoleFontInfo
GetConsoleFontSize
SetCommMask
Process32First
GetWriteWatch
CreateFileA

duser

AddGadgetMessageHandler
AttachWndProcA
AttachWndProcW
AutoTrace
DUserBuildGadget
DUserCastClass
DUserCastDirect
DUserCastHandle
DUserDeleteGadget
DUserFindClass
DUserRegisterStub
DUserBuildGadget
DUserCastClass
DUserCastDirect
DUserCastHandle
DUserDeleteGadget
DUserFindClass

dsprop

ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg

Sections

.text
Size: 28KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 210KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 542KB - Virtual size: 544KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fe453166779ae9590e4e3cb92411b986

Headers

File Characteristics

Imports

rtm

odbc32

kernel32

duser

dsprop

Sections

.text Size: 28KB - Virtual size: 35KB

.data Size: 14KB - Virtual size: 210KB

.rsrc Size: 542KB - Virtual size: 544KB

.text
Size: 28KB - Virtual size: 35KB

.data
Size: 14KB - Virtual size: 210KB

.rsrc
Size: 542KB - Virtual size: 544KB