89a9ef8bcfaa80eab99d38b861a2e8115fcf9ace3f262ce83b2daec21405f6ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89a9ef8bcfaa80eab99d38b861a2e8115fcf9ace3f262ce83b2daec21405f6ee
Size

135KB
MD5

8077f9f1fa7bd49b685c95d4c1fa261b
SHA1

e2d259709a4ed8f3cd6d2f08ba42a23c53e86043
SHA256

89a9ef8bcfaa80eab99d38b861a2e8115fcf9ace3f262ce83b2daec21405f6ee
SHA512

47d3394910abe8bef99f00b56d3ddaddb8b22f221c38ca2727ac12891eb348e02e5c7ec36dd6277c09d88d2ab1297dbb6979b80fdc4ea07a0b81b857cba59bae
SSDEEP

1536:nr/G/UZoBP+l48ZInnDFU1ljvvCf2i2u+JWEnlDmoI6CFNEmb:ru8mR+l48ZInWpaf2isJWEnl0Tb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89a9ef8bcfaa80eab99d38b861a2e8115fcf9ace3f262ce83b2daec21405f6ee

Files

89a9ef8bcfaa80eab99d38b861a2e8115fcf9ace3f262ce83b2daec21405f6ee
.dll regsvr32 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IEGetWriteableHKCU
OpenURL

Sections

.text
Size: 535B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 133KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ