SQLi v[.]8[.]5[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SQLi v.8.5.exe
Size

2.3MB
MD5

f558500b09118c2d5482c0097d41b986
SHA1

ebdd90df103acb0a28a46b4affde511f5b0bb6d0
SHA256

4081a78ba280d28c56551983e515486a1dacf9ba26a3e76a71060982cc9e5ed7
SHA512

d4bfd969d7e8e0ff7aedf55ea69398ced8bd81dd2bde7e87a79d6890fa4b38d0275ceb8c72e20336d97bff2252cd904e27f8023b93dacf961d7345d18e0e7441
SSDEEP

49152:k25iWOXWlIIb6fMID2u41715Kqao5ZPbnk4uJnmcBVbqk4uJnm:k2cRXW++6fMIiL1J5KCjPbk4uJnmcB/e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SQLi v.8.5.exe

Files

SQLi v.8.5.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ