ed98cf175d3a0a07e8ff4b195cbecada6e00ed7ef6292a4df63483a0c7ebbe20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed98cf175d3a0a07e8ff4b195cbecada6e00ed7ef6292a4df63483a0c7ebbe20
Size

113KB
MD5

0d7220fb5dbe5c7e33127966e8a62ff9
SHA1

ab51cc2130a85447c60119ef9b82c7dd5c73e329
SHA256

ed98cf175d3a0a07e8ff4b195cbecada6e00ed7ef6292a4df63483a0c7ebbe20
SHA512

b3a64cdcd600721ec20a0dcbd43e33ace5f773756060a5ff2c67dfffa79de1752286fdb0eafb459b62f9b0bf17bd082dcedbb9e3bd4c5534918a1bead6f4adb2
SSDEEP

3072:FPm9NBI3LK8jJJzCLHClx7JfvTm7UAn1SgTyO:OjZ810LOJz011SgTL

Score

N/A

Malware Config

Signatures

Files

ed98cf175d3a0a07e8ff4b195cbecada6e00ed7ef6292a4df63483a0c7ebbe20
.exe windows x86

5c97306b0a08c191baa4d37655b60b09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
FileTimeToLocalFileTime
GetLogicalDrives
lstrcmpiA
GetProcessHeap
CreateWaitableTimerW
GetModuleHandleA
GetBinaryTypeW
lstrcmpiA
EndUpdateResourceW
lstrcmpiA
GetExitCodeProcess
SetLastError
CreateNamedPipeA
lstrcmpiA
SuspendThread
HeapCreate
Sleep
GetModuleFileNameA
IsValidCodePage
GetStdHandle
lstrlenA
GetDriveTypeA

odbctrac

TraceSQLError
TraceSQLConnect
TraceVersion
TraceSQLCancel

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 631B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE