758c363913fcceaa6fce5f1ecbe06dc0

General

Target

758c363913fcceaa6fce5f1ecbe06dc0
Size

1.1MB
MD5

758c363913fcceaa6fce5f1ecbe06dc0
SHA1

0650abe77769ba2dad28bde540d766618260d704
SHA256

b79694fed098ad3d2a4543c9c9c45ed670b84127ab65384d45898c56dbd98b51
SHA512

10a91ce3c9b5033c5c2754dfd9afead5febf37f7ab5d08037aa2cf29031769bdf75107b778a5cbf8293f8a5f81be953474dcc8cbc37dc1996bead806af390f5a
SSDEEP

24576:7qkoHrW/PLp/T4b5aQrBNe7+jJZjkCHZ/+z:e/W1MDBNekkCHZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
758c363913fcceaa6fce5f1ecbe06dc0

Files

758c363913fcceaa6fce5f1ecbe06dc0
.exe windows:3 windows x86 arch:x86

ac7296371513e195544fd464685644fb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

odbc32

ODBCGetTryWaitValue
SQLSpecialColumns
SQLBindParam
SQLSetCursorName
SQLGetStmtAttr
SQLCopyDesc
SQLSetConnectAttr
SQLFreeConnect
SQLGetDiagRec
SQLProcedureColumnsA
SQLDescribeParam
SQLAllocEnv
SQLDriverConnect
SQLBindParameter
SQLErrorA
SQLForeignKeysA
SQLColumnsA
SQLDisconnect
SQLNumResultCols
SQLSetEnvAttr
SQLDrivers
SQLGetCursorNameA
SQLSetStmtOption
SQLStatistics
SQLFetchScroll
SQLGetInfo
SQLAllocConnect
SQLSetStmtAttrA
SQLGetEnvAttr
SQLSetCursorNameA
SQLForeignKeys

user32

SendMessageA
GetMessageA
TranslateMessage
DefWindowProcA
CreateWindowExA
EndPaint
BeginPaint
DispatchMessageA
ShowWindow
DestroyWindow
RegisterClassA
UpdateWindow

kernel32

HeapSetInformation
InterlockedFlushSList
PeekNamedPipe
HeapSize
GetCurrentProcess
VirtualAlloc
HeapAlloc
VirtualFree
WaitForMultipleObjects
WriteFileEx
HeapDestroy
GetEnvironmentStringsA
ConnectNamedPipe
HeapCreate
GetSystemTime
FreeEnvironmentStringsA
GetSystemTimeAdjustment
ExitProcess
GetThreadPriorityBoost
WaitNamedPipeA
InterlockedPushEntrySList
CompareStringA
SetProcessPriorityBoost
WriteFileGather
CreateNamedPipeA
HeapFree
lstrcpynA
CloseHandle
GetProcessHeap
CreateFileA
InterlockedPopEntrySList
SetFilePointer
ReadFile
VerSetConditionMask

Sections

.text
Size: 807KB - Virtual size: 807KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 290KB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac7296371513e195544fd464685644fb

Headers

DLL Characteristics

File Characteristics

Imports

odbc32

user32

kernel32

Sections

.text Size: 807KB - Virtual size: 807KB

.data Size: 17KB - Virtual size: 16KB

.rsrc Size: 290KB - Virtual size: 3.4MB

.text
Size: 807KB - Virtual size: 807KB

.data
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 290KB - Virtual size: 3.4MB