8de2f4565095e55afcdbcfe786d7e7d9ce904452cfbd2952f4e7250ce4afa214 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8de2f4565095e55afcdbcfe786d7e7d9ce904452cfbd2952f4e7250ce4afa214
Size

113KB
MD5

deea5b54eba8785296fbe84467f17b2d
SHA1

d6f6183c4fa00e43181dd7a548d9297120b909d6
SHA256

8de2f4565095e55afcdbcfe786d7e7d9ce904452cfbd2952f4e7250ce4afa214
SHA512

3d937d2fb7b34a4297f4e0216559cff462b88798ef68ae6b04631d0e1103e0dee88f3f4772eefdab5bf5789c83cc7cadf227a67fd164c1febb01b7813b07d1b4
SSDEEP

3072:PeGAqUYn6SEj7hoUawLs6VDYhf0jKkQ8gw/8Ea:/FUwVA7hoUaODy0DQ8gw/K

Score

N/A

Malware Config

Signatures

Files

8de2f4565095e55afcdbcfe786d7e7d9ce904452cfbd2952f4e7250ce4afa214
.exe windows x86

21690d1520e8fbeba95530ff5b901b8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
GetModuleHandleA
GetModuleFileNameA
lstrlenA
EndUpdateResourceW
HeapCreate
lstrcmpiA
SuspendThread
lstrcmpiA
SetLastError
GetBinaryTypeW
GetDriveTypeA
CreateWaitableTimerW
CreateNamedPipeA
lstrcmpiA
GetLogicalDrives
GetExitCodeProcess
lstrcmpiA
Sleep
FileTimeToLocalFileTime
IsValidCodePage
lstrcmpiA
GetStdHandle

odbctrac

TraceSQLCancel
TraceSQLConnect
TraceSQLError
TraceVersion

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 631B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE