2cee20c71b1af1cc33a0fc63d547b85b32cf2478d5d8f1643245ca4413641ced

Sharing

Copy URL

Twitter E-mail

General

Target

2cee20c71b1af1cc33a0fc63d547b85b32cf2478d5d8f1643245ca4413641ced
Size

44KB
MD5

c95465b407f446d6e125810bee5d7af2
SHA1

7dda67a077d64578721e02d2b7567d2f5cb1a608
SHA256

2cee20c71b1af1cc33a0fc63d547b85b32cf2478d5d8f1643245ca4413641ced
SHA512

fcc3d7d56ce01dd297cdc31fbc93201087b653b50908674fb02d28bdcccf49607b2f987b1c2487908b6eb317389ef8c347ff0a8687c80fb4078f00fd71488372
SSDEEP

768:+7yaMw0TrqC64BfzYlIH52f37nHWDRDlUkmV6W7QZS:+7yaMTrqqQIH52v7nHgxUkm7

Score

N/A

Malware Config

Signatures

Files

2cee20c71b1af1cc33a0fc63d547b85b32cf2478d5d8f1643245ca4413641ced
.exe windows x86

918b31283928455fee97e7ac45a162e9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleScreenBufferSize
UTRegister
GlobalCompact
EnumSystemCodePagesA
LCMapStringW
MoveFileWithProgressW
ReadConsoleW
GetConsoleCharType
EnumTimeFormatsW
GetProfileSectionW
RemoveDirectoryW
FileTimeToSystemTime
GetConsoleCursorMode
GlobalFindAtomW
GetFileAttributesExW
_lopen
GetOEMCP
GetConsoleCommandHistoryW
SetFileApisToOEM
SetFileTime
HeapCreate
SetThreadUILanguage
GetTempPathA
GlobalMemoryStatusEx
LoadLibraryW
CreateTimerQueueTimer
GetPrivateProfileStructA
GetCommandLineA
CreateNamedPipeA
SetConsoleInputExeNameA
SetConsoleNumberOfCommandsW

wldap32

ber_next_element
ldap_modrdn
ldap_rename_ext_sA
ldap_parse_resultA
ldap_sslinitW
ldap_ufn2dnW
ldap_modrdn2_s
ldap_set_dbg_routine
ldap_err2stringA
ldap_first_attributeW
ldap_compare_ext_sW
ldap_sslinit
ldap_extended_operation_sA
ldap_addA
ldap_encode_sort_controlA
ldap_escape_filter_element
ldap_modrdn2
ldap_search_extW
ldap_compare

odbctrac

TraceSQLSetConnectOption
TraceSQLSetConnectOptionW
TraceSQLPrimaryKeys
TraceSQLBindCol
TraceSQLColumnPrivilegesW
TraceSQLGetConnectAttrW
TraceSQLParamData
TraceSQLGetInfoW
TraceCloseLogFile
TraceSQLBindParam
TraceSQLSetStmtAttrW
TraceSQLGetStmtOption
TraceSQLPrimaryKeysW
TraceSQLAllocEnv
TraceSQLDescribeColW
TraceSQLAllocHandleStd
TraceSQLSetCursorName
TraceSQLGetDiagField

wmi

WmiMofEnumerateResourcesW
WmiQueryAllDataW
WmiQueryAllDataA
WmiFileHandleToInstanceNameW
WmiEnumerateGuids
GetTraceEnableLevel
OpenTraceW
WmiQueryGuidInformation
WmiSetSingleInstanceA

dnsapi

DnsQuery_UTF8
DnsWriteReverseNameStringForIpAddress
NetInfo_IsForUpdate
BreakRecordsIntoBlob
DnsQueryExW
Dns_AddRecordsToMessage
GetCurrentTimeInSeconds
DnsRecordTypeForName
Dns_ReadPacketNameAllocate
Dns_ReadRecordStructureFromPacket
DnsApiHeapReset
DnsReleaseContextHandle
DnsAsyncRegisterHostAddrs
DnsExtractRecordsFromMessage_W
Dns_InitializeMsgRemoteSockaddr
DnsFlushResolverCache

mpr

WNetGetPropertyTextA
WNetAddConnection2A
WNetConnectionDialog1W
WNetGetResourceInformationA
WNetEnumResourceW
WNetAddConnection3W
WNetCancelConnectionA
WNetGetConnectionA
WNetCancelConnection2A
WNetFormatNetworkNameW
MultinetGetConnectionPerformanceA
WNetSetLastErrorA
WNetGetSearchDialog
WNetGetResourceInformationW
WNetGetHomeDirectoryW

wdigest

CredentialUpdateFree
SpLsaModeInitialize
SpInstanceInit
CredentialUpdateRegister
SpInitialize
SpUserModeInitialize
CredentialUpdateNotify

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

918b31283928455fee97e7ac45a162e9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

wldap32

odbctrac

wmi

dnsapi

mpr

wdigest

Sections

.text Size: 29KB - Virtual size: 29KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 472B

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 29KB - Virtual size: 29KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 472B

.rsrc
Size: 8KB - Virtual size: 7KB