6210625aff848d45687dac933f25dd514e3f9d0c61fbe74c00946e06521f2705 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6210625aff848d45687dac933f25dd514e3f9d0c61fbe74c00946e06521f2705
Size

113KB
MD5

e6a0877d99e5033b8dda4da32e965ff9
SHA1

7d78a1a1a448bd99abb3e55ad909e264c5f4c1ca
SHA256

6210625aff848d45687dac933f25dd514e3f9d0c61fbe74c00946e06521f2705
SHA512

a654ca21a7e72323dd8b77b62885a4c608abdfbd507876ecfca00d1abecf6becadbd4638fe8504343aa073d0d173c91dab9e1c2c8f8933b8ecddb59c8dde161d
SSDEEP

3072:xyh6rENIAVg5TjOepzTnvPzJ5nbWqcen6mBna:HrENI+gxzv73bpcu6f

Score

N/A

Malware Config

Signatures

Files

6210625aff848d45687dac933f25dd514e3f9d0c61fbe74c00946e06521f2705
.exe windows x86

07f4ed13009ddcad2e028580d03547a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
HeapCreate
CreateWaitableTimerW
lstrlenA
GetModuleFileNameA
lstrcmpiA
FileTimeToLocalFileTime
CreateNamedPipeA
SetLastError
SuspendThread
lstrcmpiA
GetBinaryTypeW
GetLogicalDrives
Sleep
GetExitCodeProcess
EndUpdateResourceW
IsValidCodePage
GetProcessHeap
lstrcmpiA
GetStdHandle
lstrcmpiA
lstrcmpiA
GetDriveTypeA

odbctrac

TraceSQLConnect
TraceVersion
TraceSQLError
TraceSQLCancel

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 631B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE