librdb-win32[.]so

Sharing

Copy URL Twitter E-mail

General

Target

librdb-win32.so
Size

983KB
MD5

a4f82a1f417aade4c68719034881cb44
SHA1

8ee20d716f867c224f9bdacd49bc70ca1119409f
SHA256

6120b2c7dfe0189195f43d3ecb38ffde9ab462716d3cc98187d5c31f44475019
SHA512

2edf08436413f7addec60ad089eb947eca6be1585306c8b4cba99276ea6c9bc87a0c3411573978fb0dfba921b2caef530aeaaae826a2af57f01da5211f08c444
SSDEEP

24576:DNq6afLY9+NsapmUkpfSuISOTaJ+XAl1avjv2ThLFhOvdkJNr5Np6Mwhu0/k/ZHX:DOsapcpqIlujUJfrHp6thuCk/ZHnX

Score

N/A

Malware Config

Signatures

Files

librdb-win32.so
.dll windows x86

cfa67d34544106f930b8f04e033a80a2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetTempPathA
FormatMessageW
GetDiskFreeSpaceA
GetLastError
GetFileAttributesA
GetFileAttributesExW
OutputDebugStringW
FlushViewOfFile
CreateFileA
LoadLibraryA
WaitForSingleObjectEx
DeleteFileA
DeleteFileW
HeapReAlloc
CloseHandle
GetSystemInfo
LoadLibraryW
HeapAlloc
HeapCompact
HeapDestroy
UnlockFile
GetProcAddress
LocalFree
LockFileEx
GetFileSize
DeleteCriticalSection
GetCurrentProcessId
GetProcessHeap
SystemTimeToFileTime
FreeLibrary
WideCharToMultiByte
GetSystemTimeAsFileTime
GetSystemTime
FormatMessageA
CreateFileMappingW
MapViewOfFile
QueryPerformanceCounter
GetTickCount
FlushFileBuffers
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
FillConsoleOutputCharacterA
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
SetConsoleTitleA
GetStdHandle
ScrollConsoleScreenBufferA
WriteConsoleA
GetConsoleCursorInfo
GetEnvironmentVariableA
SetConsoleCursorInfo
GetConsoleTitleA
FillConsoleOutputAttribute
SetConsoleCursorPosition
WriteConsoleInputA
SetFilePointerEx
VerSetConditionMask
VerifyVersionInfoW
GetFileType
SetEvent
GetCurrentProcess
CreateThread
ResetEvent
FreeEnvironmentStringsW
GetEnvironmentStringsW
FindNextFileW
HeapSize
HeapValidate
UnmapViewOfFile
GetCurrentThreadId
GetFileAttributesW
CreateFileW
WaitForSingleObject
CreateMutexW
GetTempPathW
UnlockFileEx
SetEndOfFile
GetFullPathNameA
SetFilePointer
InitializeCriticalSection
LeaveCriticalSection
LockFile
OutputDebugStringA
GetDiskFreeSpaceW
WriteFile
GetFullPathNameW
EnterCriticalSection
HeapFree
HeapCreate
TryEnterCriticalSection
ReadFile
AreFileApisANSI
FindFirstFileExW
FindClose
GetOEMCP
GetACP
IsValidCodePage
GetCurrentDirectoryW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
CreateEventW
GetModuleHandleW
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
SetLastError
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
EncodePointer
DecodePointer
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
RtlUnwind
RaiseException
InterlockedFlushSList
LoadLibraryExW
GetModuleFileNameW
GetModuleHandleExW
WriteConsoleW
ExitProcess
GetFileInformationByHandle
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
ExitThread
FreeLibraryAndExitThread
GetTimeZoneInformation
SetStdHandle
GetConsoleMode
ReadConsoleW
GetConsoleCP
GetCommandLineA
GetCommandLineW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
SetEnvironmentVariableW

user32

wsprintfA

Exports

Exports

clusterFix
migrateSlot
profile
rdbMemoryAnalysis

Sections

.text
Size: 808KB - Virtual size: 807KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfa67d34544106f930b8f04e033a80a2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 808KB - Virtual size: 807KB

.rdata Size: 100KB - Virtual size: 100KB

.data Size: 45KB - Virtual size: 55KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 28KB - Virtual size: 27KB

.text
Size: 808KB - Virtual size: 807KB

.rdata
Size: 100KB - Virtual size: 100KB

.data
Size: 45KB - Virtual size: 55KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 28KB - Virtual size: 27KB