c407a1108aa32351e42ae8b1db05cadbdbb8d5d37c3247a3bd6220bac96bdc0e

General

Target

c407a1108aa32351e42ae8b1db05cadbdbb8d5d37c3247a3bd6220bac96bdc0e
Size

544KB
MD5

92c1088f081b57a0ea9fd24a6f7e2e58
SHA1

d51e1ddcc066cec9e4a7aa78b5d1cf7c087480eb
SHA256

c407a1108aa32351e42ae8b1db05cadbdbb8d5d37c3247a3bd6220bac96bdc0e
SHA512

b1bfd28618799c36bb81af2f2401b320940d03f5057c6a985897bdd61fda30aafc75572c96e0b4ba6b31d4b7da9dcd67044c598741b41c84d64985380e331f07
SSDEEP

12288:1snwc0fSaLWo7tIKIVT6WN1sByF8waHqv:1snFit9tIKIVeu1d

Score

N/A

Malware Config

Signatures

Files

c407a1108aa32351e42ae8b1db05cadbdbb8d5d37c3247a3bd6220bac96bdc0e
.exe windows x86

a793e2edfba85986e611efc4cd9e9e61

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

clbcatq

SetSetupSave

imm32

ImmGetContext
ImmLockClientImc
ImmIsIME
ImmInstallIMEW
ImmLockIMC
ImmLockIMCC
ImmLockImeDpi
ImmNotifyIME
ImmDestroySoftKeyboard
ImmRegisterWordA
ImmRegisterWordW
ImmEnumInputContext
ImmEnumRegisterWordA
ImmEnumRegisterWordW
ImmCreateIMCC
ImmActivateLayout
ImmDisableIME
ImmGenerateMessage
ImmGetAppCompatFlags
ImmGetCandidateListA
ImmGetCandidateListCountA
ImmGetCandidateListCountW
ImmGetCandidateListW
ImmGetCandidateWindow
ImmGetCompositionFontA
ImmGetCompositionFontW
ImmGetCompositionStringA
ImmGetCompositionStringW
ImmGetCompositionWindow
ImmGetContext
ImmGetConversionListA

kernel32

GetLastError
CreateFileA
GetWindowsDirectoryA
GetTickCount
OutputDebugStringW
AttachConsole
IsBadCodePtr
HeapSetInformation
CreateRemoteThread
QueryDosDeviceW
_lread

odbc32

CloseODBCPerfData
CollectODBCPerfData
CursorLibLockDbc
CursorLibLockDesc
CursorLibLockStmt
CursorLibTransact
DllBidEntryPoint
GetODBCSharedData
LockHandle
SQLAllocHandle
SQLAllocHandleStd
SQLAllocStmt
SQLAllocConnect

httpapi

HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl
HttpAddUrl

Sections

.text
Size: 31KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 330KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 488KB - Virtual size: 492KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a793e2edfba85986e611efc4cd9e9e61

Headers

File Characteristics

Imports

clbcatq

imm32

kernel32

odbc32

httpapi

Sections

.text Size: 31KB - Virtual size: 35KB

.data Size: 13KB - Virtual size: 330KB

.rsrc Size: 488KB - Virtual size: 492KB

.text
Size: 31KB - Virtual size: 35KB

.data
Size: 13KB - Virtual size: 330KB

.rsrc
Size: 488KB - Virtual size: 492KB