9631182ae3e03aa11dc1c6ba6616a53f0dcb4db31aebf7540d3334354a417970

Sharing

Copy URL

Twitter E-mail

General

Target

9631182ae3e03aa11dc1c6ba6616a53f0dcb4db31aebf7540d3334354a417970
Size

41KB
MD5

02496cc0b755d91aa090b19fa8b4e3cb
SHA1

b44b886dd7b78c3d54271754ec0da6441604251d
SHA256

9631182ae3e03aa11dc1c6ba6616a53f0dcb4db31aebf7540d3334354a417970
SHA512

f7ea5ea9bb8f25f180b20f2740bf24addbd0e6719622b8586ea6b077f66319734147e9a5dad26281afd1268272c40ee1d12cf757ba063f6360c38cb5b36a3390
SSDEEP

768:ncV4yr11mAUCfgC/zNbCri5IoZSAzcwf3MveTdX9y2YJ+2j:n84e11BUegC/ZbCu5IoZSAzcwf3MveTu

Score

N/A

Malware Config

Signatures

Files

9631182ae3e03aa11dc1c6ba6616a53f0dcb4db31aebf7540d3334354a417970
.exe windows x86

f0d3ac87f80692f29f7ae47386f77d39

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

odbc32

SQLColAttributeW
SQLColAttributes
SQLColAttributesA
SQLColAttributesW
SQLColumnPrivileges
SQLColumnPrivilegesA
SQLColumnPrivilegesW
SQLColumns
SQLColumnsA
SQLColumnsW
SQLConnect
SQLConnectA
SQLConnectW
SQLCopyDesc
SQLDataSources
SQLDataSourcesA
SQLDataSourcesW
SQLColAttributeW
SQLColAttributes
SQLColAttributesA
SQLColAttributesW
SQLColumnPrivileges
SQLColumnPrivilegesA
SQLColumnPrivilegesW
SQLColumns
SQLColumnsA
SQLColumnsW
SQLConnect
SQLConnectA
SQLConnectW
SQLCopyDesc
SQLDataSources
SQLDataSourcesA
SQLDataSourcesW
SQLColAttributeW
SQLColAttributes
SQLColAttributesA
SQLColAttributesW
SQLColumnPrivileges
SQLColumnPrivilegesA
SQLColumnPrivilegesW
SQLColumns
SQLColumnsA
SQLColumnsW
SQLConnect
SQLConnectA
SQLConnectW
SQLCopyDesc
SQLDataSources
SQLDataSourcesA
SQLDataSourcesW
SQLColAttributeW
SQLColAttributes
SQLColAttributesA
SQLColAttributesW
SQLColumnPrivileges
SQLColumnPrivilegesA
SQLColumnPrivilegesW
SQLColumns
SQLColumnsA
SQLColumnsW
SQLConnect
SQLConnectA
SQLConnectW
SQLCopyDesc
SQLDataSources
SQLDataSourcesA
SQLDataSourcesW

onex

OneXAddEapAttributes
OneXAddTLV

msvcrt

fread
fopen

msdart

??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ
??1CCritSec@@QAE@XZ

kernel32

QueryDosDeviceA
GetVersionExW
ReadConsoleA
EnumCalendarInfoW
GetACP
LocalFlags
LockResource
LocalCompact
GetWindowsDirectoryA

msacm32

acmFilterEnumW
acmFormatTagDetailsW
acmStreamPrepareHeader
acmStreamUnprepareHeader
acmDriverMessage
acmFilterDetailsW

perfctrs

CloseDhcpPerformanceData

mfcsubs

??0CString@@QAE@XZ

mscms

AssociateColorProfileWithDeviceA
AssociateColorProfileWithDeviceW
CheckBitmapBits
CheckColors
CloseColorProfile
ConvertColorNameToIndex
ConvertIndexToColorName
CreateColorTransformA
CreateColorTransformW
CreateDeviceLinkProfile
CreateMultiProfileTransform
CreateProfileFromLogColorSpaceA
CreateProfileFromLogColorSpaceW
DeleteColorTransform
AssociateColorProfileWithDeviceA
AssociateColorProfileWithDeviceW
CheckBitmapBits
CheckColors
CloseColorProfile
ConvertColorNameToIndex
ConvertIndexToColorName
CreateColorTransformA
CreateColorTransformW
CreateDeviceLinkProfile
CreateMultiProfileTransform
CreateProfileFromLogColorSpaceA
CreateProfileFromLogColorSpaceW
DeleteColorTransform

aclui

CreateSecurityPage
EditSecurity

Sections

code
Size: 1KB - Virtual size: 10KB

IMAGE_SCN_MEM_WRITE

DATA
Size: 10KB - Virtual size: 84KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RDATA
Size: 512B - Virtual size: 496B

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0d3ac87f80692f29f7ae47386f77d39

Headers

File Characteristics

Imports

odbc32

onex

msvcrt

msdart

kernel32

msacm32

perfctrs

mfcsubs

mscms

aclui

Sections

code Size: 1KB - Virtual size: 10KB

DATA Size: 10KB - Virtual size: 84KB

.rsrc Size: 26KB - Virtual size: 28KB

.reloc Size: 512B - Virtual size: 4KB

.RDATA Size: 512B - Virtual size: 496B

code
Size: 1KB - Virtual size: 10KB

DATA
Size: 10KB - Virtual size: 84KB

.rsrc
Size: 26KB - Virtual size: 28KB

.reloc
Size: 512B - Virtual size: 4KB

.RDATA
Size: 512B - Virtual size: 496B