SQLi Dumper 8[.]3 - (Musty)[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SQLi Dumper 8.3 - (Musty).zip
Size

6.0MB
MD5

1b3791a9299f46ea3da7adc2d84a6c43
SHA1

534dc0875f695868917952d9eb66e2c8bbbbff19
SHA256

e6311a615015304413e770ed10ff7f8b33378e982d33b58f3ed456c911da421f
SHA512

e739f8e94527816d7dc826a2d7a449b12e1a98f0b8456cf2514f1d631595e43fe357071c2eea0c518f0c7e157ef38671ecfa080bec7dd6c2e9ce07a50481bd2d
SSDEEP

98304:/PDNf+A5sSuzutk9zRoxaJjuH/Y9Q8d9MCAch/xdMF0Wdji0MZ5yN/wK5fHYo5Eh:hxoSSzsaB9Xd9M2dMF0qzM/ydwK5PYoC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SQLi Dumper 8.3/SQLi Dumper v8.3.exe

Files

SQLi Dumper 8.3 - (Musty).zip
.zip
SQLi Dumper 8.3/GeoIP.dat
SQLi Dumper 8.3/SQLi Dumper v8.3.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.9MB - Virtual size: 6.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SQLi Dumper 8.3/SQLi Dumper.pdb