787a9ccf186bc63b5b8e59fcc4f015934ee700955348daad3a80641a24b428b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

787a9ccf186bc63b5b8e59fcc4f015934ee700955348daad3a80641a24b428b8
Size

300KB
MD5

b0fe2d1645970c40f45002950cc844ea
SHA1

73877b0f565317d01cb44c3444d567dbb46f9a69
SHA256

787a9ccf186bc63b5b8e59fcc4f015934ee700955348daad3a80641a24b428b8
SHA512

8da42fa3e16d8f67d09caf3e1ef7df2c0efc5143d8a8c43a16bf43ee43aee860ae681fe036facf20d80be4a2ea46e02c9d8ca9ba2f8524f88b107627509f48a8
SSDEEP

6144:syVPodNDpmGO4opjF6QOlHPy4b4GZQgNFsLuI//hPJvtmEPO+:rxgNdNO4oROdvUMB69dtO

Score

N/A

Malware Config

Signatures

Files

787a9ccf186bc63b5b8e59fcc4f015934ee700955348daad3a80641a24b428b8
.exe windows x86

6fbc0b06657e82d6cdccc3fb9c7255c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
GetExitCodeProcess
TlsFree
FileTimeToLocalFileTime
lstrcmpiA
Sleep
HeapCreate
EndUpdateResourceW
GetTickCount
CreateWaitableTimerW
IsValidCodePage
GetStdHandle
GetDriveTypeA
lstrcmpiA
GetBinaryTypeW
GetLogicalDrives
lstrcmpiA
lstrcmpiA
CreateNamedPipeA
GetModuleHandleA
SetLastError
GetPrivateProfileStringW
lstrlenA

odbccp32

SQLGetTranslator
SQLConfigDataSource
SQLInstallDriver
SQLGetInstalledDrivers

Sections

.text
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 292KB - Virtual size: 296KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 631B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ