529326e90bed2b06fe702dd96c11b300cb3d37845893cac912ec87871ce1bf7b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

529326e90bed2b06fe702dd96c11b300cb3d37845893cac912ec87871ce1bf7b
Size

57KB
MD5

712583c17185d4ffc1ae95286a2cdfa0
SHA1

dc808671e5990ea17b420904173e9399c1b526ec
SHA256

529326e90bed2b06fe702dd96c11b300cb3d37845893cac912ec87871ce1bf7b
SHA512

993539763be3cf9013e20dea991e26a3a582eeb51981c983def4a7fa0378d28ef1b65234dac7b39b460ab4b6c66ce763c4575f69535fa716d511c8ad938f62ba
SSDEEP

768:YMMkZUVb29l43BkWI4CUfwOAAp5RA8qZVhBDTrr4jkU9UMnLLGPVMWzE/Z7Fuszz:YnkZE2K3KWpCUfBv+HMk2GPSWgxLz

Score

N/A

Malware Config

Signatures

Files

529326e90bed2b06fe702dd96c11b300cb3d37845893cac912ec87871ce1bf7b
.exe windows x86

116332c316f7ce4c4aafcc0be0bae63e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
lstrcmpiA
CreateWaitableTimerW
SetLastError
SuspendThread
FileTimeToLocalFileTime
GetModuleFileNameA
Sleep
GetProcessHeap
lstrcmpiA
IsValidCodePage
GetBinaryTypeW
GetExitCodeProcess
lstrlenA
CreateNamedPipeA
GetDriveTypeA
GetModuleHandleA
HeapCreate
GetStdHandle
lstrcmpiA
EndUpdateResourceW
GetLogicalDrives
lstrcmpiA

odbctrac

TraceSQLCancel
TraceSQLError
TraceVersion
TraceSQLConnect

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 631B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE