c8b9f811e017c93bb685b9b8e2a702454f421b756a15470429cf90539861621a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8b9f811e017c93bb685b9b8e2a702454f421b756a15470429cf90539861621a
Size

300KB
MD5

336a03a399864afb175840d72231a7b5
SHA1

6299eab05a8f9641f978d7af2fd9a88d7204d5b2
SHA256

c8b9f811e017c93bb685b9b8e2a702454f421b756a15470429cf90539861621a
SHA512

777d5ed66825feb25751648c56f81f732ce63b49df14a22d1210e29faba8889916fea9286bbf5447a1e085b9ad7938564525630d8b763b0ebf5a52667a45800a
SSDEEP

6144:XbRzVPodbR22i9r+B1kJlnKw542BJRzsxJ7/0N22saFR:XFzxg922i9rjnHfzMc22FR

Score

N/A

Malware Config

Signatures

Files

c8b9f811e017c93bb685b9b8e2a702454f421b756a15470429cf90539861621a
.exe windows x86

64fa40704a1bc22ec0b8668f53db6952

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
lstrcmpiA
GetExitCodeProcess
CreateNamedPipeA
SetLastError
lstrcmpiA
GetPrivateProfileStringW
IsValidCodePage
GetModuleHandleA
lstrcmpiA
HeapCreate
Sleep
CreateWaitableTimerW
GetLogicalDrives
GetStdHandle
GetBinaryTypeW
TlsFree
GetDriveTypeA
lstrlenA
lstrcmpiA
EndUpdateResourceW
FileTimeToLocalFileTime
lstrcmpiA

odbccp32

SQLGetInstalledDrivers
SQLConfigDataSource
SQLGetTranslator
SQLInstallDriver

Sections

.text
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 292KB - Virtual size: 296KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 631B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ