0d61c6fb6c1d291d4403084f82e5a862dd290d39ec52acabd1eeed91880d8f9e | Triage

Sharing

General

Target

0d61c6fb6c1d291d4403084f82e5a862dd290d39ec52acabd1eeed91880d8f9e
Size

131KB
MD5

a1e5a151551020715a7e9b0701c38885
SHA1

c02a61a7a0730c9f4913a2390b6b3c373ed6e5a7
SHA256

0d61c6fb6c1d291d4403084f82e5a862dd290d39ec52acabd1eeed91880d8f9e
SHA512

ca3466ecb4ec4ecbd8ca62660fcc418c18b541f17894a943b4c5e3b1d3df56edb400c9f7d451e2b052b39cbccfdd4668587de88da35ab36c64048b4942ca2b6c
SSDEEP

1536:Q/G/ZpZoBP+l48ZInnDFU1lgvvCf2i2u+JWEnc7moI+CNNumb:Q+BpmR+l48ZInW+af2isJWEnc81b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d61c6fb6c1d291d4403084f82e5a862dd290d39ec52acabd1eeed91880d8f9e

Files

0d61c6fb6c1d291d4403084f82e5a862dd290d39ec52acabd1eeed91880d8f9e
.dll regsvr32 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IEGetWriteableHKCU
OpenURL

Sections

.text
Size: 535B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 129KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ