Static task
static1
General
-
Target
Oracle_SSN_DLM_08081345.exe
-
Size
1.8MB
-
MD5
263ffd7cc170271eb4c54b262e5d0e36
-
SHA1
b91a8ce3ca3a84a3c025b5482ecffddfaef6726d
-
SHA256
030a74be6b0a38a5aabc6874b1a3aed3e4c38290da8b7ebdaab56672c7bbabad
-
SHA512
3001d07924a4e54a3798b7971523c61f1da8a746dc03b2740de6a54766e63ee7b4224a332b521dbd71bd54313047c00275b44603d4db80662e7fd418fb5eba2b
-
SSDEEP
24576:/OPKbasd5fNXv38q5b0gabcyveOO+4V9t9hFnysZn9qa2U6zQsoroRYJipGkDSzj:M48lhveR+495jZn9l2UGQsoroe0GkDwj
Malware Config
Signatures
Files
-
Oracle_SSN_DLM_08081345.exe.exe windows x86
2b8c1230e950f4ece79909a49709ca4e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCurrentProcess
TerminateProcess
GetModuleHandleW
InterlockedDecrement
InterlockedIncrement
CompareStringW
GlobalAlloc
GlobalFree
GetLastError
DeleteFileW
SetEnvironmentVariableW
GetCommandLineW
LocalAlloc
LocalFree
ReadFile
QueryDosDeviceW
SetConsoleCtrlHandler
GetStdHandle
WriteFile
DeviceIoControl
CreateNamedPipeW
GetProcessId
GetEnvironmentVariableW
PeekNamedPipe
WaitForSingleObject
CreateFileW
GetSystemDirectoryW
DisconnectNamedPipe
OpenProcess
CreateToolhelp32Snapshot
MoveFileWithProgressW
Process32NextW
CreateFileA
GetVersionExA
Process32FirstW
CloseHandle
FreeConsole
LoadLibraryW
GetWindowsDirectoryW
GetProcAddress
GlobalMemoryStatusEx
SetThreadExecutionState
WaitNamedPipeW
AllocConsole
SetConsoleTitleW
IsDebuggerPresent
FlushFileBuffers
GetExitCodeProcess
CreateDirectoryW
FindFirstFileW
SetLastError
FindNextFileW
InterlockedCompareExchange
GetDiskFreeSpaceW
RemoveDirectoryW
SetFileTime
GetModuleFileNameW
SetThreadPriority
SetEndOfFile
GetTempPathW
FindClose
GetLocaleInfoW
GetFileAttributesW
GetCurrentThreadId
SetFileAttributesW
Sleep
GetFileAttributesExW
GetUserDefaultLCID
FileTimeToSystemTime
GetCurrentThread
InterlockedExchangeAdd
GetNativeSystemInfo
GetCurrentDirectoryW
MoveFileExW
GetCurrentProcessId
SystemTimeToFileTime
FreeLibrary
CopyFileExW
VirtualQuery
GetQueuedCompletionStatus
PostQueuedCompletionStatus
CreateIoCompletionPort
GetFileInformationByHandle
SetFilePointerEx
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateMutexW
ReleaseMutex
CreateEventW
SetEvent
ResetEvent
DeleteCriticalSection
OpenMutexW
GetTickCount
VirtualProtect
FlushInstructionCache
IsBadReadPtr
MulDiv
RtlCaptureContext
ReleaseSemaphore
TerminateThread
CreateThread
CreateSemaphoreW
VirtualQueryEx
SetUnhandledExceptionFilter
WaitForMultipleObjects
RaiseException
GetSystemInfo
LoadLibraryExA
UnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
EncodePointer
RtlUnwind
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
MultiByteToWideChar
GetConsoleMode
ReadConsoleW
WideCharToMultiByte
GetConsoleCP
ExitProcess
GetModuleHandleExW
SetStdHandle
GetFileType
ExitThread
FreeLibraryAndExitThread
GetModuleFileNameA
GetACP
HeapFree
HeapAlloc
WriteConsoleW
LCMapStringW
GetTimeZoneInformation
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetStringTypeW
GetProcessHeap
HeapSize
HeapReAlloc
DecodePointer
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 169KB - Virtual size: 168KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.gfids Size: 512B - Virtual size: 292B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 36KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 63KB - Virtual size: 62KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ