MySql[.]Data[.]dll | Triage

Sharing

General

Target

MySql.Data.dll
Size

686KB
MD5

0f732852e8ebecb6132ba8cf6f3867a8
SHA1

5314bc8df4cf4a05f162e7ef28dfe7e30a3c4d41
SHA256

5023cbf36d7678f2451bcc37a12b1d62beb28766fb12ddc34b8b2b022733a969
SHA512

873ab4b98f88c090f1d5570fee3f85cd44c803c0fda00f5466869ac8f01c2bf701927341f968fc1e83e77e12af1fd618f47511de264066453398e0c5dfdc735e
SSDEEP

6144:yOSgmwGeYlMYwiF8CXezVW9GNdoicpJ0MmKXgWehbKl61eCnW4+51wAYniPY:yaVG5CC+ez0MmKXg061U51wAYn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MySql.Data.dll

Files

MySql.Data.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

G:\ade\build-cnet\sb_1-32420400-1548661251.92\connector-net\MySQL.Data\src\obj\Release\netcoreapp2.0\MySql.Data.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 683KB - Virtual size: 683KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ