2504897ed4ad32735843ddb10d452aa7059854b51f5ce62bd0e92e28683b6efd

General

Target

2504897ed4ad32735843ddb10d452aa7059854b51f5ce62bd0e92e28683b6efd
Size

8KB
MD5

502d45f7a82962d96d2c2ff19ff4442a
SHA1

8ce17065b31eb8e23850bbfcc289e713ca0c8f30
SHA256

2504897ed4ad32735843ddb10d452aa7059854b51f5ce62bd0e92e28683b6efd
SHA512

9706511b0143bbc5503c20791230baefa46ea717fb57b05bffa6bc77e996412a72bccad0baf55e1a824d5d7e57c9ff4a504cbf8a968c98b04627a4d49d1edabf
SSDEEP

192:nNzQfUeZcPZp7VoT0cz1qkMFZB2z6wlvJim/nbdSRI8EdFIqAv:nNzQfozVogfP2WeFJH39O

Score

N/A

Malware Config

Signatures

Files

2504897ed4ad32735843ddb10d452aa7059854b51f5ce62bd0e92e28683b6efd
.zip
PaymentReceipt262_pdf.exe
.exe windows x86

7e192f8c83e5ef9f2e6ab30860b0d538

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

rasman

RasGetDialParams

odbc32

SQLDescribeColW
SQLDescribeParam
SQLDisconnect
SQLDriverConnect
SQLDriverConnectA
SQLDriverConnectW
SQLDrivers
SQLDriversA
SQLDriversW
SQLEndTran
SQLError
SQLErrorA
SQLErrorW
SQLExecDirect
SQLExecDirectA
SQLExecDirectW
SQLExecute
SQLExtendedFetch
SQLFetch
SQLFetchScroll
SQLForeignKeys
SQLForeignKeysA
SQLForeignKeysW
SQLFreeConnect
SQLFreeEnv
SQLFreeHandle
SQLFreeStmt
SQLGetConnectAttr
SQLGetConnectAttrA
SQLGetConnectAttrW
SQLGetConnectOption

kernel32

MapViewOfFileEx
GetACP
GetSystemDirectoryA
LocalFree
SetConsoleTitleW
EnumCalendarInfoW
GetFileSize
ReadFile
CreateFileA

pdh

PdhAdd009CounterA
PdhAdd009CounterW
PdhAddCounterA
PdhAddCounterW

crypt32

CertDeleteCTLFromStore
CertControlStore
CertCloseStore
CertAlgIdToOID
CertDuplicateStore
CertFindAttribute
CertFindCRLInStore
CertFindCTLInStore

cmutil

CmStrCpyAllocW

mtxclu

MtxCluIsClusterPresent

samlib

SamAddMemberToAlias

Sections

.text
Size: 5KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e192f8c83e5ef9f2e6ab30860b0d538

Headers

File Characteristics

Imports

rasman

odbc32

kernel32

pdh

crypt32

cmutil

mtxclu

samlib

Sections

.text Size: 5KB - Virtual size: 24KB

DATA Size: 7KB - Virtual size: 80KB

.rsrc Size: 24KB - Virtual size: 24KB

Size: 512B - Virtual size: 496B

.text
Size: 5KB - Virtual size: 24KB

DATA
Size: 7KB - Virtual size: 80KB

.rsrc
Size: 24KB - Virtual size: 24KB