4adccf5e90479c787de32d0809cfc64fac06831630fb0837fc83ab054b66911f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4adccf5e90479c787de32d0809cfc64fac06831630fb0837fc83ab054b66911f
Size

57KB
MD5

cded2fba934eda16bb498744808e906c
SHA1

1dec75a61c233e2bc36d33d14ee463f424c8facb
SHA256

4adccf5e90479c787de32d0809cfc64fac06831630fb0837fc83ab054b66911f
SHA512

7df8f260eebde9a9993de352e5899b32a39fde22341d69bdf7b3f9f36a097b658764bd270ea934c93b452935d4d46a6ddb1f44e3a3c308a0c2817430bb2ce5f9
SSDEEP

768:LV6PHECeoCavtPD/SIpkc/fDxlznIIPtcXyfoSt+GMVqHTDZYt325ZxsWXIxpwD9:LV6HELQr6ILTxxDfwLGzZYwXxWU

Score

N/A

Malware Config

Signatures

Files

4adccf5e90479c787de32d0809cfc64fac06831630fb0837fc83ab054b66911f
.exe windows x86

d9a24a95d5554d398af4c25df3faffea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetModuleHandleA
SuspendThread
lstrcmpiA
IsValidCodePage
GetExitCodeProcess
lstrcmpiA
GetProcessHeap
HeapCreate
lstrcmpiA
GetDriveTypeA
GetLogicalDrives
Sleep
FileTimeToLocalFileTime
CreateNamedPipeA
CreateWaitableTimerW
EndUpdateResourceW
GetStdHandle
lstrlenA
lstrcmpiA
SetLastError
lstrcmpiA
GetBinaryTypeW

odbctrac

TraceSQLConnect
TraceVersion
TraceSQLCancel
TraceSQLError

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 631B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE