a668223408b52f0909ca418ea6485686817738054b37a1fc5878ad2e9fa1d748 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a668223408b52f0909ca418ea6485686817738054b37a1fc5878ad2e9fa1d748
Size

56KB
MD5

44536d24e07fa3ee12c9c2014c696000
SHA1

b6a0ba35399428442d8f7c619311d16066ff4086
SHA256

a668223408b52f0909ca418ea6485686817738054b37a1fc5878ad2e9fa1d748
SHA512

ad9fc7ffe86a5703c6b78a65e1e225837d992f494b60b49bf1cfa6fbf32e98e802c99dc1ad0c78303aab59975e7dd764898ba7c4475b65136782ccd6bae22eec
SSDEEP

1536:liT+YJ6E0QEmaWwaZBgvhIZKaxlB9S43L8Bj2H5zNRKz+p:liT70o/aWWwLxlLj+j+5zTw

Score

N/A

Malware Config

Signatures

Files

a668223408b52f0909ca418ea6485686817738054b37a1fc5878ad2e9fa1d748
.exe windows x86

0f39d7ec581476be372112019f6c6473

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDrives
CreateWaitableTimerW
EndUpdateResourceA
GetDriveTypeA
GetTickCount
lstrcmpiA
GetExitCodeProcess
lstrcmpiA
GetModuleHandleA
Sleep
lstrcmpiA
lstrlenA
GetStdHandle
GetPrivateProfileStringW
FileTimeToLocalFileTime
SetLastError
CreateNamedPipeA
HeapCreate
IsValidCodePage
GetBinaryTypeA
lstrcmpiA
lstrcmpiA
TlsFree

odbccp32

SQLGetTranslator
SQLGetInstalledDrivers
SQLInstallDriver
SQLConfigDataSource

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ