cf9fc0de90d380bf6fa1e3b15301e1c20f40da8d1fcbc156d7f7ec5610b93d9a

General

Target

cf9fc0de90d380bf6fa1e3b15301e1c20f40da8d1fcbc156d7f7ec5610b93d9a
Size

240KB
MD5

83351a8b9fb9b9d8b9530348ab41d696
SHA1

83dc5692919ca3d6eeb887821abd76b669a581f5
SHA256

cf9fc0de90d380bf6fa1e3b15301e1c20f40da8d1fcbc156d7f7ec5610b93d9a
SHA512

752678a9f393b1e0745c8c97dc715e72adbfefce6fa853ef5c11c43e154209d53d043c0a87860275f5dd6a7f9320513d5b7d5b80b792e0ec2eeb0127d59c5762
SSDEEP

3072:AyF70CPsignYaV9S3ktGQvd5P+9sCaVM/4udLd8t5fyv5jBMq:AUTXgnFEU8Ql56yMjdxWGd

Score

N/A

Malware Config

Signatures

Files

cf9fc0de90d380bf6fa1e3b15301e1c20f40da8d1fcbc156d7f7ec5610b93d9a
.exe windows x86

8f11f81b2056abdab423525f2c132c72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

odbc32

ord9
ord111
ord12
ord13
ord16
ord117
ord18
ord119
ord20
ord43
ord44
ord145
ord147
ord48
ord49
ord150
ord152
ord153
ord154
ord155
ord156
ord58
ord59
ord160
ord61
ord162
ord166
ord167
ord68
ord69
ord170
ord72
ord28
ord29
ord31
ord132
ord133
ord134
ord135
ord136
ord37

kernel32

VirtualProtect
CloseHandle
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
SetFilePointer
FlushFileBuffers
GetLastError
LoadLibraryA
IsBadWritePtr
HeapReAlloc
VirtualAlloc
WideCharToMultiByte
HeapAlloc
GetModuleFileNameA
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCommandLineA
GetCommandLineW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameW
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetProcAddress
ExitProcess
GetVersion
GetStartupInfoW
GetModuleHandleA
GetSystemInfo
IsProcessorFeaturePresent
MultiByteToWideChar

Exports

Exports

OutStand
flywith
keeplive

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f11f81b2056abdab423525f2c132c72

Headers

File Characteristics

Imports

odbc32

kernel32

Exports

Exports

Sections

.text Size: 128KB - Virtual size: 127KB

.rdata Size: 56KB - Virtual size: 53KB

.data Size: 28KB - Virtual size: 195KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 128KB - Virtual size: 127KB

.rdata
Size: 56KB - Virtual size: 53KB

.data
Size: 28KB - Virtual size: 195KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 20KB - Virtual size: 18KB