82254809c4928c7294f4f1c53318bc125174a79deb5b731ca9162744d16c0448

General

Target

82254809c4928c7294f4f1c53318bc125174a79deb5b731ca9162744d16c0448
Size

838KB
MD5

1f7840faeeb33bda9d960ce9d9bb893d
SHA1

b970e8491b9401796e42219037666a2d4499edcd
SHA256

82254809c4928c7294f4f1c53318bc125174a79deb5b731ca9162744d16c0448
SHA512

076516cfeca128cc2622f70122d1af70a0715ca1249a22b8986170a436aebb0e0d5a150a36f627f1fc7e926024aa7491db41ac154d796d71c3e8460acd425a6b
SSDEEP

24576:NetC7iU8z8/fEPCYsHCGc02TiKFApmdph:oUPEqra/W2H

Score

N/A

Malware Config

Signatures

Files

82254809c4928c7294f4f1c53318bc125174a79deb5b731ca9162744d16c0448
.exe windows x86

92e43de61b1f2ae4ff70528a11c885a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wldap32

ldap_bind_s
ldap_modifyA
ldap_search_st
ldap_delete_extA
ldap_parse_extended_resultW
ldap_search_init_pageA
ldap_first_attributeW
ldap_escape_filter_elementW
ldap_open
ldap_get_valuesA
ldap_controls_freeA
ldap_start_tls_sW
ldap_search_stW
ldap_delete_s
ldap_parse_sort_controlW

crtdll

_clearfp
putchar
_fputwchar
cosh
_strnicmp
srand
fgets
isxdigit
_ismbcdigit
_ultow
_mbcjistojms
_open
getchar
scanf
_logb
_close
fabs
setbuf
tanh
_mbsicmp
_pwctype_dll
isalnum
_jn
wcslen
fopen
_cexit

odbcbcp

bcp_getcolfmt
bcp_moretext
bcp_collen
dbprtypeW
bcp_columns
bcp_initA
bcp_writefmtW
dbprtypeA
bcp_batch
SQLLinkedCatalogsW
SQLGetNextEnumeration
bcp_colfmt
bcp_initW
bcp_readfmtA
bcp_bind
bcp_setcolfmt

kernel32

GetSystemTimeAsFileTime
GetLargestConsoleWindowSize
GlobalAlloc
LoadLibraryA
lstrcatA
EnumUILanguagesW
GetCommTimeouts
RtlZeroMemory
IsValidLocale
GetACP
SetConsoleCursorInfo
EnumCalendarInfoExW
AddAtomW
GetConsoleKeyboardLayoutNameW

Sections

.text
Size: 365KB - Virtual size: 365KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 196KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

92e43de61b1f2ae4ff70528a11c885a8

Headers

File Characteristics

Imports

wldap32

crtdll

odbcbcp

kernel32

Sections

.text Size: 365KB - Virtual size: 365KB

.rdata Size: 96KB - Virtual size: 96KB

.data Size: 196KB - Virtual size: 1.6MB

.rsrc Size: 177KB - Virtual size: 176KB

.reloc Size: 2KB - Virtual size: 21KB

.text
Size: 365KB - Virtual size: 365KB

.rdata
Size: 96KB - Virtual size: 96KB

.data
Size: 196KB - Virtual size: 1.6MB

.rsrc
Size: 177KB - Virtual size: 176KB

.reloc
Size: 2KB - Virtual size: 21KB