6c3104e90de2cdccd34376f236abfbb3d6a695f36ec4f7104679c07d3ab44233 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6c3104e90de2cdccd34376f236abfbb3d6a695f36ec4f7104679c07d3ab44233
Size

812KB
MD5

61d325059d31ac1f1fb7379b0d84d361
SHA1

73e7c1a14bd9726c3c8d77c33576efcd3f54fc70
SHA256

6c3104e90de2cdccd34376f236abfbb3d6a695f36ec4f7104679c07d3ab44233
SHA512

14220e9f9acce7c7100acd3f6d55a2a176d3aa9f6a9a6b586cef07a512fa3141147871cb664031d90e1c7a993fc39f5d52c8ad12e487eb57ab6dcdeafd81e3c0
SSDEEP

24576:lJE5C9NHVW4+BQZzueNvW0+Vx2vpI5TZCRg:lymNOYz9vWXV0vpIdZ

Score

N/A

Malware Config

Signatures

Files

6c3104e90de2cdccd34376f236abfbb3d6a695f36ec4f7104679c07d3ab44233
.exe windows x86

6866e89a7cc7168995323ab492240ddd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileAttributesA
GetLogicalDrives
LoadLibraryA
GetLogicalDrives
GetStringTypeA
VirtualProtect
CreateEventA
OpenMutexW
GetLogicalDriveStringsW
GetVersion
GetLogicalDrives
lstrcpyW
GetLogicalDrives
GetLogicalDrives
GetStdHandle
SetCurrentDirectoryW

sqlsrv32

SQLCancel
SQLDisconnect
SQLBindCol
SQLFetch

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 802KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE