24a1aab704c5d8b0d157c502bd5eb3e6

Sharing

Copy URL Twitter E-mail

General

Target

24a1aab704c5d8b0d157c502bd5eb3e6
Size

2.4MB
MD5

24a1aab704c5d8b0d157c502bd5eb3e6
SHA1

4106b56842aa683682a59f71b7be9fbadfad3b96
SHA256

3dcadee98016192274d078d28079d2d065b35de3783b540e4b7cf0a7692ce0b1
SHA512

783d921a889e4e2d920aadb5f5f9a4cfbcd86a6adabec2501e28eee9d060b9125f1a013629c58186bc3df7665db3c359f65e6ddeac9f63cf5a0e8b36654b128a
SSDEEP

49152:N0WVDuaSnGsg3/Ep4Ifmy03biXFrTeP9toMi4dh7B:Hudk84IfnvBTqti4dh9

Score

3^/10

pdf link

Malware Config

Signatures

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/sqldbxshdhjqhdnj/SQLDBX_ZHS/SqlDbx.exe
unpack001/sqldbxshdhjqhdnj/SQLDBX_ZHS/SqlDbx_zhs.exe

Files

24a1aab704c5d8b0d157c502bd5eb3e6
.rar
sqldbxshdhjqhdnj/SQLDBX_ZHS/SqlDbx.chm
.chm
sqldbxshdhjqhdnj/SQLDBX_ZHS/SqlDbx.chw
sqldbxshdhjqhdnj/SQLDBX_ZHS/SqlDbx.exe
.exe windows:5 windows x86 arch:x86

f535becc13d9b55f872163c5f4de42a6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

imm32

ImmReleaseContext
ImmSetCompositionWindow
ImmIsIME
ImmGetContext

rpcrt4

UuidToStringA
RpcStringFreeA
UuidCreate

kernel32

HeapReAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
RtlUnwind
HeapSize
ExitProcess
SetStdHandle
GetFileType
GetACP
IsValidCodePage
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LCMapStringA
LCMapStringW
HeapCreate
GetStdHandle
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetDriveTypeA
GetConsoleCP
GetConsoleMode
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateThread
SetEnvironmentVariableA
GetProcessHeap
lstrlenA
OutputDebugStringA
GetComputerNameA
GetLocalTime
GetModuleFileNameA
MultiByteToWideChar
GetDateFormatA
GetTimeFormatA
VirtualFree
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceA
MulDiv
lstrcpyA
GetTickCount
lstrcmpiA
lstrcatA
VirtualAlloc
GetCurrentProcess
DuplicateHandle
CloseHandle
CreateEventA
GetExitCodeProcess
SetEvent
Sleep
WaitForSingleObject
TerminateProcess
GlobalAlloc
GlobalFree
ReadFile
WriteFile
GetLastError
GetTimeZoneInformation
FormatMessageA
GlobalLock
ExitThread
HeapFree
VirtualQuery
GetSystemInfo
VirtualProtect
HeapAlloc
GetFileSizeEx
LocalFileTimeToFileTime
GetShortPathNameA
GetVolumeInformationA
UnlockFile
LockFile
FlushFileBuffers
GetStringTypeExA
MoveFileA
GetSystemDirectoryW
LoadLibraryW
SystemTimeToFileTime
GetThreadLocale
GetModuleHandleW
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetFullPathNameA
GetFileTime
SetFileTime
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
LoadLibraryExA
GetProfileIntA
GlobalFlags
GetModuleFileNameW
GetCurrentProcessId
GlobalSize
GlobalGetAtomNameA
lstrcmpW
RaiseException
InterlockedExchange
LocalFree
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
GetVersion
FreeLibrary
FreeResource
CopyFileExA
GetTempFileNameA
GetTempPathA
GetFileInformationByHandle
CompareFileTime
CompareStringA
SearchPathA
GetEnvironmentVariableA
ResetEvent
GetCurrentThreadId
SetErrorMode
GetPrivateProfileStringA
lstrlenW
LocalAlloc
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCurrentDirectoryA
GetProcAddress
LoadLibraryA
SetLastError
FileTimeToSystemTime
GetFileAttributesExA
GetLocaleInfoA
FindClose
FindNextFileA
FindFirstFileA
GetFileAttributesA
MoveFileExA
CopyFileA
DeleteFileA
SetFilePointer
GetFileSize
SetEndOfFile
CreateFileA
InterlockedExchangeAdd
InterlockedDecrement
InterlockedIncrement
lstrcmpA
lstrcpynA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetModuleHandleA
GlobalUnlock
CompareStringW

user32

UnregisterClassA
CopyAcceleratorTableA
CreateMenu
PostThreadMessageA
GetTabbedTextExtentA
LockWindowUpdate
CheckRadioButton
CheckDlgButton
WinHelpA
GetWindowTextLengthA
GetForegroundWindow
GetLastActivePopup
GetTopWindow
GetMessageTime
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetScrollRange
GetScrollPos
ShowScrollBar
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
GetScrollInfo
SetWindowPlacement
GetWindowPlacement
SetScrollRange
SetScrollPos
DeferWindowPos
EnumChildWindows
GetDCEx
EndDeferWindowPos
BeginDeferWindowPos
GetSysColorBrush
GetKeyNameTextA
MapVirtualKeyExA
SetParent
FrameRect
GetActiveWindow
GetWindow
UnhookWindowsHookEx
SetWindowsHookExA
GetMessageA
WindowFromPoint
CallNextHookEx
GetClassLongA
CreateWindowExA
ValidateRect
DrawMenuBar
SetMenu
SetPropA
GetClassNameA
CallWindowProcA
RemovePropA
GetPropA
SetWindowLongA
RemoveMenu
RedrawWindow
GetMenuState
LoadMenuA
ModifyMenuA
AppendMenuA
GetMenuDefaultItem
GetMessagePos
DrawStateA
GetMenuItemID
GetSubMenu
RegisterWindowMessageA
GetSystemMenu
WindowFromDC
DestroyIcon
GetIconInfo
CopyImage
GetMenuItemInfoA
ShowOwnedPopups
SetMenuInfo
IsMenu
GetWindowLongA
MonitorFromRect
GetKeyboardLayout
EnableScrollBar
GetCaretPos
OffsetRect
DestroyCaret
HideCaret
ShowCaret
SetCaretPos
CreateCaret
GetAsyncKeyState
IsClipboardFormatAvailable
IsCharLowerA
IsCharAlphaA
IsWindow
DispatchMessageA
PeekMessageA
UnionRect
SetForegroundWindow
FindWindowA
DrawFocusRect
GetDlgCtrlID
BringWindowToTop
IsIconic
LoadBitmapA
LoadAcceleratorsA
IsChild
MenuItemFromPoint
GetMenuInfo
GetMenu
GetWindowDC
FillRect
DestroyAcceleratorTable
CreateAcceleratorTableA
SetActiveWindow
CreatePopupMenu
EnableMenuItem
CheckMenuItem
GetMenuItemCount
InsertMenuA
DeleteMenu
IsWindowVisible
GetDesktopWindow
CharLowerA
GetMonitorInfoA
MonitorFromPoint
SystemParametersInfoA
SetWindowRgn
SendDlgItemMessageA
GetKeyState
PostQuitMessage
IsZoomed
WaitMessage
TranslateMessage
EnableWindow
GrayStringA
TabbedTextOutA
MoveWindow
ShowWindow
DrawTextA
SetFocus
GetNextDlgTabItem
TranslateAcceleratorA
GetClipboardData
InflateRect
SetCursor
SetWindowPos
ClientToScreen
ScreenToClient
SetTimer
SetCapture
PtInRect
KillTimer
ReleaseCapture
GetCapture
SetScrollInfo
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawIcon
DestroyCursor
UnpackDDElParam
ReuseDDElParam
DestroyMenu
InsertMenuItemA
GetWindowThreadProcessId
CreateDialogIndirectParamA
DrawIconEx
UpdateWindow
IsRectEmpty
DrawEdge
EndDialog
GetMenuStringA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ScrollWindowEx
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
GetMenuItemRect
SendMessageA
GetDlgItem
GetFocus
wsprintfA
CharUpperA
GetWindowRect
LoadIconA
GetParent
SetRectEmpty
GetClientRect
GetSystemMetrics
InvalidateRect
DrawFrameControl
GetCursorPos
PostMessageA
GetDC
ReleaseDC
IsWindowEnabled
GetWindowTextA
LoadImageA
IsCharAlphaNumericA
MessageBoxA
SetWindowTextA
CopyRect
IntersectRect
OpenClipboard
EmptyClipboard
RegisterClipboardFormatA
SetClipboardData
CloseClipboard
GetSysColor
SetRect
GetClassInfoA
DefWindowProcA
LoadCursorA
DestroyWindow
EqualRect
DrawTextExA
BeginPaint
EndPaint
MessageBeep

gdi32

GetStockObject
DPtoLP
PtVisible
RectVisible
TextOutA
Escape
CreatePolygonRgn
CreateBitmap
CreatePatternBrush
LPtoDP
CreateSolidBrush
CreateFontIndirectA
GetTextExtentPoint32A
SetTextAlign
Rectangle
Polygon
UnrealizeObject
GetTextAlign
GetTextExtentExPointA
GetBkColor
DeleteDC
GetPixel
SetPixel
GetCurrentObject
GetLayout
GetTextExtentPointA
GetCurrentPositionEx
SetWindowOrgEx
GetNearestColor
RoundRect
CreateRectRgn
CombineRgn
CreateRectRgnIndirect
SelectClipRgn
GetWindowOrgEx
EnumFontFamiliesA
CreateFontA
Polyline
CopyMetaFileA
CreateDCA
SaveDC
RestoreDC
SetPolyFillMode
SetROP2
SetStretchBltMode
LineTo
SetMapMode
PatBlt
IntersectClipRect
GetViewportExtEx
GetWindowExtEx
StartDocA
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectPalette
SetRectRgn
GetMapMode
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
GetViewportOrgEx
CreateEllipticRgn
Ellipse
GetCharWidthA
StretchDIBits
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextFaceA
ExcludeClipRect
GetTextColor
MoveToEx
SetBrushOrgEx
GetTextMetricsA
CreatePen
CreateCompatibleBitmap
GetClipBox
DeleteObject
BitBlt
RealizePalette
CreateHalftonePalette
CreatePalette
GetDIBColorTable
CreateCompatibleDC
GetObjectA
SetBkMode
SelectObject
SetTextColor
ExtTextOutA
SetBkColor
GetDeviceCaps

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
GetJobA
ClosePrinter

advapi32

RegCreateKeyA
RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegSetValueA
IsTextUnicode
RegEnumKeyExA
RegEnumValueA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA
GetUserNameA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetDesktopFolder
SHBrowseForFolderA
SHGetFolderPathA
ExtractIconA
SHGetFileInfoA
ShellExecuteA
DragFinish
DragQueryFileA
DragAcceptFiles
SHCreateDirectoryExA

comctl32

ImageList_Draw
ImageList_GetIconSize
_TrackMouseEvent

shlwapi

PathIsRelativeA
PathCanonicalizeA
PathIsDirectoryEmptyA
PathRemoveFileSpecW
PathFindExtensionA
PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

ole32

OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CreateStreamOnHGlobal
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
CoInitializeEx
CoUninitialize
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
CreateBindCtx
GetRunningObjectTable
ReleaseStgMedium
OleUninitialize
OleInitialize
OleRun
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
OleDestroyMenuDescriptor

oleaut32

VarDateFromStr
SystemTimeToVariantTime
SysFreeString
VariantInit
VariantCopy
VariantClear
VariantChangeType
SafeArrayCreate
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayGetDim
SysAllocStringLen
CreateErrorInfo
SysAllocString
VariantTimeToSystemTime

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 309KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 797KB - Virtual size: 797KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
sqldbxshdhjqhdnj/SQLDBX_ZHS/SqlDbx.pdf
.pdf
- http://dev.mysql.com/downloads/connector/odbc/
- http://www.postgresql.org/ftp/odbc/versions/
- https://code.kx.com/trac/wiki/Cookbook/ODBC
sqldbxshdhjqhdnj/SQLDBX_ZHS/SqlDbx_zhs.exe
.exe windows:5 windows x86 arch:x86

f535becc13d9b55f872163c5f4de42a6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

imm32

ImmReleaseContext
ImmSetCompositionWindow
ImmIsIME
ImmGetContext

rpcrt4

UuidToStringA
RpcStringFreeA
UuidCreate

kernel32

HeapReAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
RtlUnwind
HeapSize
ExitProcess
SetStdHandle
GetFileType
GetACP
IsValidCodePage
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LCMapStringA
LCMapStringW
HeapCreate
GetStdHandle
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetDriveTypeA
GetConsoleCP
GetConsoleMode
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateThread
SetEnvironmentVariableA
GetProcessHeap
lstrlenA
OutputDebugStringA
GetComputerNameA
GetLocalTime
GetModuleFileNameA
MultiByteToWideChar
GetDateFormatA
GetTimeFormatA
VirtualFree
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceA
MulDiv
lstrcpyA
GetTickCount
lstrcmpiA
lstrcatA
VirtualAlloc
GetCurrentProcess
DuplicateHandle
CloseHandle
CreateEventA
GetExitCodeProcess
SetEvent
Sleep
WaitForSingleObject
TerminateProcess
GlobalAlloc
GlobalFree
ReadFile
WriteFile
GetLastError
GetTimeZoneInformation
FormatMessageA
GlobalLock
ExitThread
HeapFree
VirtualQuery
GetSystemInfo
VirtualProtect
HeapAlloc
GetFileSizeEx
LocalFileTimeToFileTime
GetShortPathNameA
GetVolumeInformationA
UnlockFile
LockFile
FlushFileBuffers
GetStringTypeExA
MoveFileA
GetSystemDirectoryW
LoadLibraryW
SystemTimeToFileTime
GetThreadLocale
GetModuleHandleW
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetFullPathNameA
GetFileTime
SetFileTime
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
LoadLibraryExA
GetProfileIntA
GlobalFlags
GetModuleFileNameW
GetCurrentProcessId
GlobalSize
GlobalGetAtomNameA
lstrcmpW
RaiseException
InterlockedExchange
LocalFree
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
GetVersion
FreeLibrary
FreeResource
CopyFileExA
GetTempFileNameA
GetTempPathA
GetFileInformationByHandle
CompareFileTime
CompareStringA
SearchPathA
GetEnvironmentVariableA
ResetEvent
GetCurrentThreadId
SetErrorMode
GetPrivateProfileStringA
lstrlenW
LocalAlloc
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCurrentDirectoryA
GetProcAddress
LoadLibraryA
SetLastError
FileTimeToSystemTime
GetFileAttributesExA
GetLocaleInfoA
FindClose
FindNextFileA
FindFirstFileA
GetFileAttributesA
MoveFileExA
CopyFileA
DeleteFileA
SetFilePointer
GetFileSize
SetEndOfFile
CreateFileA
InterlockedExchangeAdd
InterlockedDecrement
InterlockedIncrement
lstrcmpA
lstrcpynA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetModuleHandleA
GlobalUnlock
CompareStringW

user32

UnregisterClassA
CopyAcceleratorTableA
CreateMenu
PostThreadMessageA
GetTabbedTextExtentA
LockWindowUpdate
CheckRadioButton
CheckDlgButton
WinHelpA
GetWindowTextLengthA
GetForegroundWindow
GetLastActivePopup
GetTopWindow
GetMessageTime
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetScrollRange
GetScrollPos
ShowScrollBar
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
GetScrollInfo
SetWindowPlacement
GetWindowPlacement
SetScrollRange
SetScrollPos
DeferWindowPos
EnumChildWindows
GetDCEx
EndDeferWindowPos
BeginDeferWindowPos
GetSysColorBrush
GetKeyNameTextA
MapVirtualKeyExA
SetParent
FrameRect
GetActiveWindow
GetWindow
UnhookWindowsHookEx
SetWindowsHookExA
GetMessageA
WindowFromPoint
CallNextHookEx
GetClassLongA
CreateWindowExA
ValidateRect
DrawMenuBar
SetMenu
SetPropA
GetClassNameA
CallWindowProcA
RemovePropA
GetPropA
SetWindowLongA
RemoveMenu
RedrawWindow
GetMenuState
LoadMenuA
ModifyMenuA
AppendMenuA
GetMenuDefaultItem
GetMessagePos
DrawStateA
GetMenuItemID
GetSubMenu
RegisterWindowMessageA
GetSystemMenu
WindowFromDC
DestroyIcon
GetIconInfo
CopyImage
GetMenuItemInfoA
ShowOwnedPopups
SetMenuInfo
IsMenu
GetWindowLongA
MonitorFromRect
GetKeyboardLayout
EnableScrollBar
GetCaretPos
OffsetRect
DestroyCaret
HideCaret
ShowCaret
SetCaretPos
CreateCaret
GetAsyncKeyState
IsClipboardFormatAvailable
IsCharLowerA
IsCharAlphaA
IsWindow
DispatchMessageA
PeekMessageA
UnionRect
SetForegroundWindow
FindWindowA
DrawFocusRect
GetDlgCtrlID
BringWindowToTop
IsIconic
LoadBitmapA
LoadAcceleratorsA
IsChild
MenuItemFromPoint
GetMenuInfo
GetMenu
GetWindowDC
FillRect
DestroyAcceleratorTable
CreateAcceleratorTableA
SetActiveWindow
CreatePopupMenu
EnableMenuItem
CheckMenuItem
GetMenuItemCount
InsertMenuA
DeleteMenu
IsWindowVisible
GetDesktopWindow
CharLowerA
GetMonitorInfoA
MonitorFromPoint
SystemParametersInfoA
SetWindowRgn
SendDlgItemMessageA
GetKeyState
PostQuitMessage
IsZoomed
WaitMessage
TranslateMessage
EnableWindow
GrayStringA
TabbedTextOutA
MoveWindow
ShowWindow
DrawTextA
SetFocus
GetNextDlgTabItem
TranslateAcceleratorA
GetClipboardData
InflateRect
SetCursor
SetWindowPos
ClientToScreen
ScreenToClient
SetTimer
SetCapture
PtInRect
KillTimer
ReleaseCapture
GetCapture
SetScrollInfo
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawIcon
DestroyCursor
UnpackDDElParam
ReuseDDElParam
DestroyMenu
InsertMenuItemA
GetWindowThreadProcessId
CreateDialogIndirectParamA
DrawIconEx
UpdateWindow
IsRectEmpty
DrawEdge
EndDialog
GetMenuStringA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ScrollWindowEx
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
GetMenuItemRect
SendMessageA
GetDlgItem
GetFocus
wsprintfA
CharUpperA
GetWindowRect
LoadIconA
GetParent
SetRectEmpty
GetClientRect
GetSystemMetrics
InvalidateRect
DrawFrameControl
GetCursorPos
PostMessageA
GetDC
ReleaseDC
IsWindowEnabled
GetWindowTextA
LoadImageA
IsCharAlphaNumericA
MessageBoxA
SetWindowTextA
CopyRect
IntersectRect
OpenClipboard
EmptyClipboard
RegisterClipboardFormatA
SetClipboardData
CloseClipboard
GetSysColor
SetRect
GetClassInfoA
DefWindowProcA
LoadCursorA
DestroyWindow
EqualRect
DrawTextExA
BeginPaint
EndPaint
MessageBeep

gdi32

GetStockObject
DPtoLP
PtVisible
RectVisible
TextOutA
Escape
CreatePolygonRgn
CreateBitmap
CreatePatternBrush
LPtoDP
CreateSolidBrush
CreateFontIndirectA
GetTextExtentPoint32A
SetTextAlign
Rectangle
Polygon
UnrealizeObject
GetTextAlign
GetTextExtentExPointA
GetBkColor
DeleteDC
GetPixel
SetPixel
GetCurrentObject
GetLayout
GetTextExtentPointA
GetCurrentPositionEx
SetWindowOrgEx
GetNearestColor
RoundRect
CreateRectRgn
CombineRgn
CreateRectRgnIndirect
SelectClipRgn
GetWindowOrgEx
EnumFontFamiliesA
CreateFontA
Polyline
CopyMetaFileA
CreateDCA
SaveDC
RestoreDC
SetPolyFillMode
SetROP2
SetStretchBltMode
LineTo
SetMapMode
PatBlt
IntersectClipRect
GetViewportExtEx
GetWindowExtEx
StartDocA
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectPalette
SetRectRgn
GetMapMode
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
GetViewportOrgEx
CreateEllipticRgn
Ellipse
GetCharWidthA
StretchDIBits
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextFaceA
ExcludeClipRect
GetTextColor
MoveToEx
SetBrushOrgEx
GetTextMetricsA
CreatePen
CreateCompatibleBitmap
GetClipBox
DeleteObject
BitBlt
RealizePalette
CreateHalftonePalette
CreatePalette
GetDIBColorTable
CreateCompatibleDC
GetObjectA
SetBkMode
SelectObject
SetTextColor
ExtTextOutA
SetBkColor
GetDeviceCaps

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
GetJobA
ClosePrinter

advapi32

RegCreateKeyA
RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegSetValueA
IsTextUnicode
RegEnumKeyExA
RegEnumValueA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA
GetUserNameA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetDesktopFolder
SHBrowseForFolderA
SHGetFolderPathA
ExtractIconA
SHGetFileInfoA
ShellExecuteA
DragFinish
DragQueryFileA
DragAcceptFiles
SHCreateDirectoryExA

comctl32

ImageList_Draw
ImageList_GetIconSize
_TrackMouseEvent

shlwapi

PathIsRelativeA
PathCanonicalizeA
PathIsDirectoryEmptyA
PathRemoveFileSpecW
PathFindExtensionA
PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

ole32

OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CreateStreamOnHGlobal
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
CoInitializeEx
CoUninitialize
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
CreateBindCtx
GetRunningObjectTable
ReleaseStgMedium
OleUninitialize
OleInitialize
OleRun
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
OleDestroyMenuDescriptor

oleaut32

VarDateFromStr
SystemTimeToVariantTime
SysFreeString
VariantInit
VariantCopy
VariantClear
VariantChangeType
SafeArrayCreate
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayGetDim
SysAllocStringLen
CreateErrorInfo
SysAllocString
VariantTimeToSystemTime

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 309KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 799KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
sqldbxshdhjqhdnj/SQLDBX_ZHS/下载说明(河东软件园).htm
.html
sqldbxshdhjqhdnj/SQLDBX_ZHS/使用帮助(河东软件园).url
.url
sqldbxshdhjqhdnj/SQLDBX_ZHS/使用说明(河东软件园).txt
sqldbxshdhjqhdnj/下载说明(河东软件园).htm
.html
sqldbxshdhjqhdnj/使用帮助(河东软件园).url
.url
sqldbxshdhjqhdnj/使用说明(河东软件园).txt

Sharing

General

Malware Config

Signatures

Files

f535becc13d9b55f872163c5f4de42a6

Headers

DLL Characteristics

File Characteristics

Imports

imm32

rpcrt4

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 309KB - Virtual size: 309KB

.data Size: 63KB - Virtual size: 81KB

.rsrc Size: 797KB - Virtual size: 797KB

.text Size: 108KB - Virtual size: 108KB

f535becc13d9b55f872163c5f4de42a6

Headers

DLL Characteristics

File Characteristics

Imports

imm32

rpcrt4

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 309KB - Virtual size: 309KB

.data Size: 63KB - Virtual size: 81KB

.rsrc Size: 800KB - Virtual size: 799KB

.text Size: 108KB - Virtual size: 108KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 309KB - Virtual size: 309KB

.data
Size: 63KB - Virtual size: 81KB

.rsrc
Size: 797KB - Virtual size: 797KB

.text
Size: 108KB - Virtual size: 108KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 309KB - Virtual size: 309KB

.data
Size: 63KB - Virtual size: 81KB

.rsrc
Size: 800KB - Virtual size: 799KB

.text
Size: 108KB - Virtual size: 108KB