b665e36aeb008d02c22ac5ecd9b86c31929ac7691b6d297caffbee69f7e85fff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b665e36aeb008d02c22ac5ecd9b86c31929ac7691b6d297caffbee69f7e85fff
Size

12KB
MD5

a1c922b97496690dfc3680f716664e63
SHA1

af94c0e4c61a844cb7481a75ef15ba2f6d1c9a2b
SHA256

8fcb53f72b3d3f72ecf2d0f1c3a920c3730ac423e310a4d66534f7fa5f29adc9
SHA512

0c58e777478f42c86eea22156cb870143cbebd407581f6ef9a67e0e32e69b7ad8c7d7440fbcde4018a0a566b88112bdc03e5ce27caa2c58a2c578b92264d7390
SSDEEP

384:/sW/i/fEleiEWP5VEJg7LkfjYU5i8Q70cQYqw9+5uV5P:6/slfERJwkrYWi800LYHP5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b665e36aeb008d02c22ac5ecd9b86c31929ac7691b6d297caffbee69f7e85fff

Files

b665e36aeb008d02c22ac5ecd9b86c31929ac7691b6d297caffbee69f7e85fff
.zip
b665e36aeb008d02c22ac5ecd9b86c31929ac7691b6d297caffbee69f7e85fff
.dll windows:5 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 866B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 128KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ