f76f3004e38a805a6fd5684ec22bb63c983cdc32148e607047f2397e3f31a673

General

Target

f76f3004e38a805a6fd5684ec22bb63c983cdc32148e607047f2397e3f31a673
Size

616KB
MD5

35852c4263871a0a73d3910153296e75
SHA1

6e1f7731be49783cee22f047b2b871cff0bd4246
SHA256

f76f3004e38a805a6fd5684ec22bb63c983cdc32148e607047f2397e3f31a673
SHA512

f3c2d47eb6e43e0777a109e7909e6927bb584700c9313d44ac1870bba25f97ac464668644cd282a375bc83a174cc504e5a054d2bf183d1d064868005132139dc
SSDEEP

12288:cRS8/OCFSPrEBFIEdBovlS3Fpj7Y0yx9VrFrY1jnDE:cVXmh9S1pj7fsHFeo

Score

N/A

Malware Config

Signatures

Files

f76f3004e38a805a6fd5684ec22bb63c983cdc32148e607047f2397e3f31a673
.exe windows x86

de2907b331a341b89915c2d3d5e5b0f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

rtm

BestMatchInTable

odbc32

SQLGetDescRec
SQLGetDescRecA
SQLGetDescRecW
SQLGetDiagField
SQLGetDiagFieldA
SQLGetDiagFieldW
SQLGetDiagRec
SQLGetDiagRecA
SQLGetDiagRecW
SQLGetEnvAttr
SQLGetFunctions
SQLGetInfo
SQLGetInfoA
SQLGetInfoW
SQLGetStmtAttr
SQLGetStmtAttrA
SQLGetStmtAttrW
SQLGetStmtOption
SQLGetTypeInfo
SQLGetTypeInfoA
SQLGetTypeInfoW
SQLMoreResults
SQLNativeSql
SQLNativeSqlA
SQLNativeSqlW
SQLNumParams
SQLParamData
SQLParamOptions
SQLPrepare
SQLPrepareA
SQLPrepareW

kernel32

ReadFile
GetLastError
GetEnvironmentVariableA
RtlUnwind
GetConsoleDisplayMode
GetConsoleFontInfo
GetConsoleFontSize
SetCommMask
Process32First
GetWriteWatch
CreateFileA

duser

AddGadgetMessageHandler
AttachWndProcA
AttachWndProcW
AutoTrace
DUserBuildGadget
DUserCastClass
DUserCastDirect
DUserCastHandle
DUserDeleteGadget
DUserFindClass
DUserRegisterStub
DUserBuildGadget
DUserCastClass
DUserCastDirect
DUserCastHandle
DUserDeleteGadget
DUserFindClass

dsprop

ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg
ErrMsg

Sections

.text
Size: 28KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 194KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 561KB - Virtual size: 564KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

de2907b331a341b89915c2d3d5e5b0f2

Headers

File Characteristics

Imports

rtm

odbc32

kernel32

duser

dsprop

Sections

.text Size: 28KB - Virtual size: 35KB

.data Size: 14KB - Virtual size: 194KB

.rsrc Size: 561KB - Virtual size: 564KB

.text
Size: 28KB - Virtual size: 35KB

.data
Size: 14KB - Virtual size: 194KB

.rsrc
Size: 561KB - Virtual size: 564KB