a705e126df34070e8345cff56bacef73a7006b7b73daf7ba6b3411802101d61f

Sharing

Copy URL Twitter E-mail

General

Target

a705e126df34070e8345cff56bacef73a7006b7b73daf7ba6b3411802101d61f
Size

248KB
MD5

a5c62b4b19f399a0f76b348f73693966
SHA1

6e7e275b0b13837700cfc662f8cefd8622cdd457
SHA256

a705e126df34070e8345cff56bacef73a7006b7b73daf7ba6b3411802101d61f
SHA512

88da01e46fd09797cefcf13936300b1175356efc19bac7b18f8615b34559cef60ac7d16c093481f22153e88a5325e3602b6cbade8fef82ecb3bc15b8412c4fbd
SSDEEP

3072:SP0vHrdi9UESNeVAzihjDv3ZlfD8/fN1t8bMPiIHeDKawm/e7oBH+R5I7MIfiPbU:Li9UEueVyihHvpl6KadeD1G7obWRu

Score

N/A

Malware Config

Signatures

Files

a705e126df34070e8345cff56bacef73a7006b7b73daf7ba6b3411802101d61f
.exe windows x86

b9600d244bff5f683db0f9312ad8eb83

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

core35

ord26
ord25

nlsrtl32

ord203
ord201
ord237
ord175
ord117
ord231
ord224
ord16
ord281

ora73

ord154
ord117
ord177
ord181
ord204
ord141
ord143
ord142
ord185
ord173
ord156
ord189
ord162
ord200
ord198
ord122
ord140
ord187

sqllib18

sqlcxt
sqlnul
sqlprc
sqlclu
sqlald
sqlghp

kernel32

RtlUnwind
GetStartupInfoA
GetCommandLineA
GetEnvironmentStrings
ExitProcess
GetVersion
VirtualFree
ReadFile
VirtualAlloc
FlushFileBuffers
SetStdHandle
CreateFileA
WriteFile
GetCPInfo
GetOEMCP
GetACP
GetModuleFileNameA
UnhandledExceptionFilter
MultiByteToWideChar
CloseHandle
GetFileType
GetStdHandle
SetFilePointer
GetLastError
SetEndOfFile
GetModuleHandleA
GetProcAddress
WideCharToMultiByte

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 87KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aonayxi
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b9600d244bff5f683db0f9312ad8eb83

Headers

File Characteristics

Imports

core35

nlsrtl32

ora73

sqllib18

kernel32

Sections

.text Size: 69KB - Virtual size: 68KB

.bss Size: - Virtual size: 5KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 8KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 50B

.reloc Size: 87KB - Virtual size: 88KB

aonayxi Size: 76KB - Virtual size: 76KB

.text
Size: 69KB - Virtual size: 68KB

.bss
Size: - Virtual size: 5KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 8KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 50B

.reloc
Size: 87KB - Virtual size: 88KB

aonayxi
Size: 76KB - Virtual size: 76KB