rund1132_004C0000_withoutOL[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

rund1132_004C0000_withoutOL.bin
Size

91KB
MD5

9210f822a0925d616e08678f567f13a8
SHA1

9f3928d8c00288a437b197b943cf6a1635538962
SHA256

60e882f450f9c8c229f137b490ca27304cd650d65eed8562d52856de6766600c
SHA512

66c87f1ad09d672be5aefdc09b57d02c7d8f88977a6fc371ba7f881ea31c350a459c06eaa126cdc9dc041603c92e86a36d1cd8a4127b18b6ded7218e5430a848
SSDEEP

1536:Sxh3x3j1IfceNJwqqWRy/1fXbHk4GJ/bhEWChkYEdwIlBSXsUOubPKtsWnY:Up9wOqqw61fXbEvgkYEpyN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
rund1132_004C0000_withoutOL.bin

Files

rund1132_004C0000_withoutOL.bin
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

start

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ