b3f9d0a54fa2dbe6c0be609e470ee950N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3f9d0a54fa2dbe6c0be609e470ee950N.exe
Size

150KB
MD5

b3f9d0a54fa2dbe6c0be609e470ee950
SHA1

4edb6046f2a0ea684d28bf62034a02c7337f640b
SHA256

83ca6d4656cba657bc4e564f453230e73ca92ba8eb290c10f0d360e20ba026c1
SHA512

5947abeec794bbe74b8f64e5b1d6956e34f991d8805518e900ef01fa3866ae274a408790160f876eff1ab4e8ff4618edea2dfeab55d339fbff2d25256b89acd4
SSDEEP

3072:kX4MbLU7RbSYH0B527YCmoV5ihpo9TIEXBJ6Acfla6g:koyiKkdihpod6v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3f9d0a54fa2dbe6c0be609e470ee950N.exe

Files

b3f9d0a54fa2dbe6c0be609e470ee950N.exe
.dll windows:10 windows x86 arch:x86

e0bd3263fd5ea99b1d0c2f6f5194cc24

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

odbcji32.pdb

Imports

msvcrt

_except_handler4_common
_XcptFilter
_initterm
malloc
free
_amsg_exit

kernel32

Sleep
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter

Exports

Exports

DllMain
IntlLibHinst

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ