9b17c03f815a24c146a3238f0378fa6ea200c86d3a26369e69dc44373601c5ab

Sharing

Copy URL Twitter E-mail

General

Target

9b17c03f815a24c146a3238f0378fa6ea200c86d3a26369e69dc44373601c5ab
Size

41KB
MD5

6cd30b5fb4b706b508d7d25541377af2
SHA1

c3d3d990225be850a423edb780e66ea3851c7a05
SHA256

9b17c03f815a24c146a3238f0378fa6ea200c86d3a26369e69dc44373601c5ab
SHA512

08d74c432a357903ce9aff64165470698ed031d1acd59e7efc5262d41667ea2c87d684d03014e230d1618752944e0352cb4dc312276391cd2f8365d1346990da
SSDEEP

768:4AG/+dy8YcwTIlDRZWOFfI34Xk6FH4xhPlL0zCdR:4/uYcwMlDRQL36FYxhGUR

Score

N/A

Malware Config

Signatures

Files

9b17c03f815a24c146a3238f0378fa6ea200c86d3a26369e69dc44373601c5ab
.exe windows x86

fef7d35471f3474f3d375dbf6bf570b5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

MkParseDisplayName
OleSaveToStream
OleSetClipboard
OleCreateLinkFromDataEx
HACCEL_UserSize
DllGetClassObjectWOW
UtConvertDvtd16toDvtd32
DcomChannelSetHResult
CoRegisterSurrogate
CreateStdProgressIndicator
UpdateDCOMSettings
ReleaseStgMedium
CoGetClassVersion
ReadStringStream
CoRevokeClassObject
CoInitializeSecurity
CoGetProcessIdentifier
CoPushServiceDomain
CoTreatAsClass
CoGetCallerTID
HPALETTE_UserFree
CoCreateInstance
ComPs_NdrDllGetClassObject

msoert2

UlStripWhitespace
OpenFileStreamWithFlagsW
HrIStreamToBSTR
OpenFileStreamShareW
strtrimW
IUnknownList_CreateInstance
StrToUintW
OpenFileStream
UlStripWhitespaceW
IsPrint
HrGetMsgParam
IsUpper
UnlocStrEqNW
HrSafeGetStreamSize
PszEscapeMenuStringA
PszSkipWhiteA
HrIndexOfWeek
HrStreamSeekCur
HrCreatePhonebookEntry
FreeTempFileList
FIsValidFileNameCharA
PszToANSI
OpenFileStreamW
StripCRLF

kernel32

HeapAlloc
SetThreadPriorityBoost
OpenWaitableTimerW
EnumSystemLocalesA
GetPrivateProfileSectionNamesW
GetThreadPriority
_lread
ConvertFiberToThread
Heap32Next
GetCurrentThread
GetStartupInfoA
GlobalCompact
EnumTimeFormatsW
lstrcpynW
TlsSetValue
TlsAlloc
DeleteTimerQueueTimer
LoadLibraryA
GetUserDefaultLCID
OutputDebugStringA
RemoveLocalAlternateComputerNameW
IsValidLocale
TransactNamedPipe
GetVersionExA
EnumDateFormatsA
PeekNamedPipe
VirtualAlloc
_lcreat

odbctrac

TraceSQLParamOptions
TraceOpenLogFile
TraceSQLBulkOperations
TraceSQLEndTran
TraceSQLAllocHandleStdW
TraceSQLPrepare
TraceSQLCancel
TraceSQLTransact
TraceSQLDescribeColW
TraceSQLDriversW
TraceSQLSetDescField
TraceSQLGetConnectOptionW
TraceSQLGetCursorNameW
TraceSQLColumnPrivilegesW
TraceSQLGetTypeInfo
TraceSQLGetStmtOption
TraceSQLSetScrollOptions
TraceSQLExtendedFetch
TraceSQLAllocConnect

ws2_32

WSACloseEvent
WSARecv
WSAGetServiceClassInfoW
htonl
ntohs
WSALookupServiceEnd
WSAGetLastError
WSAAsyncGetServByName
WSASetLastError
WSAEnumProtocolsA
WSAGetServiceClassNameByClassIdW
WSAProviderConfigChange
WSASetEvent
WSAEnumNameSpaceProvidersW
WSAGetServiceClassNameByClassIdA
gethostbyaddr
WSARecvDisconnect
WSCEnumProtocols
getservbyname
WSAGetQOSByName
freeaddrinfo

sqlunirl

_CreateNamedPipe_@32
_VkKeyScan_@4
_GetTextFace_@12
_RegOpenKey_@12
_DialogBoxIndirectParam_@20
_DefMDIChildProc_@16
_CharLower@4
_SendDlgItemMessage@20
_SetFileSecurity_@12
_ObjectPrivilegeAuditAlarm_@24
_CompareString_@24
_ExtractAssociatedIcon_@12
_DefFrameProc_@20
_OpenWindowStation_@12
_LoadCursor@8
_CreateDesktop_@24
_SendMessageTimeout_@28
_GetPrivateProfileSection_@16
_IsCharAlphaNumeric_@4
_EnumProps_@8
_InsertMenuItem_@16
_CopyFile_@12

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fef7d35471f3474f3d375dbf6bf570b5

Headers

DLL Characteristics

File Characteristics

Imports

ole32

msoert2

kernel32

odbctrac

ws2_32

sqlunirl

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 1KB