6dcd736ebd18bbf2a60ce9456692d803f9c615e45efa15ce1b0d6ec468004751 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6dcd736ebd18bbf2a60ce9456692d803f9c615e45efa15ce1b0d6ec468004751
Size

111KB
MD5

5db6bb437cd0631fca3a13ed5b4e81c1
SHA1

26f071cab13c5c482cbb6ff63794907d3ebf2b4e
SHA256

6dcd736ebd18bbf2a60ce9456692d803f9c615e45efa15ce1b0d6ec468004751
SHA512

46b2c42c283a89ed6c714134b3933bbe088e948a85e91a5c6a78ea6026bbb68b8b5dc27f1a7b168d9ecc4bf0a622306303517e80d889d960c657802a1781b5ec
SSDEEP

3072:xgfKyWecDHivkPOtJgibUQkXfSEquKRCP:wejBPOtJRXEaRy

Score

N/A

Malware Config

Signatures

Files

6dcd736ebd18bbf2a60ce9456692d803f9c615e45efa15ce1b0d6ec468004751
.exe windows x86

eb037a8a5b737113e8c4afa51b898a58

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
lstrcmpiA
CreateNamedPipeA
GetBinaryTypeW
FileTimeToLocalFileTime
lstrcmpiA
EndUpdateResourceW
GetModuleHandleA
GetExitCodeProcess
HeapCreate
CreateWaitableTimerW
SuspendThread
lstrcmpiA
GetDriveTypeA
IsValidCodePage
GetStdHandle
GetLogicalDrives
SetLastError
Sleep
lstrlenA
GetModuleFileNameA
lstrcmpiA
GetProcessHeap

odbctrac

TraceVersion
TraceSQLError
TraceSQLCancel
TraceSQLConnect

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 631B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE