71e6b2286903bd0a47ca49be78de6547ca74c84ba757c84f73220fd3fea3806a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71e6b2286903bd0a47ca49be78de6547ca74c84ba757c84f73220fd3fea3806a
Size

374KB
MD5

a6408e902d912b6cb0daff75681f7168
SHA1

4cb969484d6c40416f279d7529b4a36b78a529f9
SHA256

71e6b2286903bd0a47ca49be78de6547ca74c84ba757c84f73220fd3fea3806a
SHA512

a3dfa504e730d4839015e725488b611484d9a0aa8dafc614cb98841469603b873ae2a07992d804cecf249fadd93d80b96db991f1ea892d1e6e1245cc1812457b
SSDEEP

6144:PHvGac0j90Nftd3IX/N2rvS6gfvlLGAHdTb+AwABYYE0SG3Y6gi+prPd1W:mac0RoQvEra6mvlC82NG3Dgi+rF1W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/数据库备份工具/MYSQLSP1.exe

Files

71e6b2286903bd0a47ca49be78de6547ca74c84ba757c84f73220fd3fea3806a
.zip
数据库备份工具/MYSQLSP1.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

xt\0
Size: - Virtual size: 836KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xt\1
Size: 358KB - Virtual size: 362KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xt\2
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
数据库备份工具/config.ini