9b4061110a4663f8c4dff721f11bde7ef81fe17a6681e90861e3f34d7839b8d3 | Triage

Sharing

General

Target

9b4061110a4663f8c4dff721f11bde7ef81fe17a6681e90861e3f34d7839b8d3
Size

74KB
MD5

e3aeeda8ae34bdb753b2f20568b3001f
SHA1

437a7df104965948fad09974e17079062550ca32
SHA256

9b4061110a4663f8c4dff721f11bde7ef81fe17a6681e90861e3f34d7839b8d3
SHA512

344cd619dc25c9098f3e2337e9ca5b76824ee950ec0c5bafc82f58f3b2001610bb033bfa2cffd02a03ab9c96eb1d28ce0eeb8f2dac6204a06b9a3c8b847ca33b
SSDEEP

1536:TE9p1WWxlmlh/v6iPACLI/mIGyJw4GEjG2HuEBnxCgidp:Tcp1hxan6io1mHn0Bcg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b4061110a4663f8c4dff721f11bde7ef81fe17a6681e90861e3f34d7839b8d3

Files

9b4061110a4663f8c4dff721f11bde7ef81fe17a6681e90861e3f34d7839b8d3
.dll windows x86

e73b9ffa39e54a9e7d6dc24883183a32

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

dsound

ord11

user32

DialogBoxParamW

Exports

Exports

dcGetInterface

Sections

.text
Size: 68KB - Virtual size: 576KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE