21abe0bc8f3e3ff56330167c64dd1bbe5575867d98f11d1d1d5225adbae87bf4

Sharing

Copy URL Twitter E-mail

General

Target

21abe0bc8f3e3ff56330167c64dd1bbe5575867d98f11d1d1d5225adbae87bf4
Size

491KB
MD5

fe405c5dd878763ee1966f23bb69e259
SHA1

05df3a848387fe0212500469ea8605e9678fb15b
SHA256

21abe0bc8f3e3ff56330167c64dd1bbe5575867d98f11d1d1d5225adbae87bf4
SHA512

51efdc7648d0d729a2bbf0aa48a847c0603e75724157b455422e19603c871cb1b234cbbd3fcc651c6e506395411f5120382c589542457ca6bbf8b19250e5eb2c
SSDEEP

12288:KtkvLXAeCXMMTl/RjOm117eoSGZ2CqJ2qJX:WkzLC/l/RamDSJJHX

Score

N/A

Malware Config

Signatures

Files

21abe0bc8f3e3ff56330167c64dd1bbe5575867d98f11d1d1d5225adbae87bf4
.exe windows x86

3725b05948b62785a9fea1bb5d39dbcf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

odbc32

ord4
ord136
ord150
ord37
ord18
ord78
ord63
ord48
ord121
ord61
ord162
ord176
ord160
ord26
ord29
ord43
ord75
ord155
ord28
ord152
ord31
ord9
ord108
ord49
ord119
ord140
ord153
ord12
ord139
ord74
ord44
ord24
ord173
ord13
ord107
ord135
ord5
ord20
ord132
ord154

kernel32

GetVersionExA
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
HeapSize
LoadLibraryA
RtlUnwind
ReadFile
SetEndOfFile
SetFilePointer
GetConsoleMode
GetConsoleCP
HeapReAlloc
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCurrentProcessId
GetTickCount
HeapCreate
HeapDestroy
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
MultiByteToWideChar
FreeEnvironmentStringsA
GetModuleFileNameW
GetModuleFileNameA
PeekNamedPipe
GetVersionExW
LockResource
InitializeCriticalSection
OpenProcess
EnterCriticalSection
GetWindowsDirectoryW
GetEnvironmentVariableW
FindResourceW
VirtualProtect
GetDateFormatW
DeleteFileW
GetModuleHandleW
GetCurrentThread
VirtualFree
ResetEvent
OpenMutexW
GetSystemTime
QueryPerformanceCounter
CreateFileW
FindFirstChangeNotificationW
CreateMutexW
GetShortPathNameW
VirtualAlloc
DuplicateHandle
CreateDirectoryW
SetSystemTimeAdjustment
ExpandEnvironmentStringsW
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
GetLastError
CloseHandle
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
Sleep
WideCharToMultiByte
GetTimeZoneInformation
GetFileType
CreateFileA
SetStdHandle
LeaveCriticalSection
SetHandleCount
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
ExitProcess
WriteFile

Sections

.text
Size: 285KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3725b05948b62785a9fea1bb5d39dbcf

Headers

File Characteristics

Imports

odbc32

kernel32

Sections

.text Size: 285KB - Virtual size: 285KB

.rdata Size: 197KB - Virtual size: 197KB

.data Size: 5KB - Virtual size: 62KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 285KB - Virtual size: 285KB

.rdata
Size: 197KB - Virtual size: 197KB

.data
Size: 5KB - Virtual size: 62KB

.rsrc
Size: 2KB - Virtual size: 1KB