Sybase[.]AdoNet2[.]AseClient[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Sybase.AdoNet2.AseClient.dll
Size

864KB
MD5

9150b67a71656596564842f553a747df
SHA1

5f66f7336f633083acf643b41ce024bf704d3f0d
SHA256

32db58a7b8399884f85874f353274c407c007db1f0744515d2c07a17cec1ebe4
SHA512

d0f4b51c2ef19899463687b049ed53f6ce2cfaf22f6b65d473b7c92ce3539be1b1c88b22ac453f96e63bcced5904d599651d40dbe798ddaaf8b7da4fb8806959
SSDEEP

6144:9UKgkdOw5HiXqhYuMDVLX4A0XZQbQWcqJDazqjwix4H2IkR59/EPm2FFRFMgYgNU:Oi7G7hdfgh+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sybase.AdoNet2.AseClient.dll

Files

Sybase.AdoNet2.AseClient.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 852KB - Virtual size: 850KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ