c99a93181778f91b1768abc3bd475f13fe1a2a2370c4a2f8662fdac5efad4067 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c99a93181778f91b1768abc3bd475f13fe1a2a2370c4a2f8662fdac5efad4067
Size

15KB
MD5

e55c3a948d4e9b8df24d123498d6c7ba
SHA1

6db0a24ffffc1ab8d0f208c8a4a99e2a7c608865
SHA256

5acfdda591be8238763e7bae29ec59f643769295fb45dce6a6ca1ebbbdb45ddd
SHA512

17155e60aef8d9b834aeaa1259b08d2a0571c04a859e5be95b589db98e1ee301f7316830942dd13977a53c5fa674606ce051eeb34646b4caab050a9445133dbd
SSDEEP

384:Aqqf5bS8XiM9wZxv4/F9hJr8gueNjDpNpvJRaogZ:APdXXDwZG/F9n8gNhPHgx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c99a93181778f91b1768abc3bd475f13fe1a2a2370c4a2f8662fdac5efad4067

Files

c99a93181778f91b1768abc3bd475f13fe1a2a2370c4a2f8662fdac5efad4067
.zip
c99a93181778f91b1768abc3bd475f13fe1a2a2370c4a2f8662fdac5efad4067
.dll windows:5 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 951B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 128KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ