55223d7dfdaa1b7ef48d01e35790b758

Sharing

Copy URL

Twitter E-mail

General

Target

55223d7dfdaa1b7ef48d01e35790b758
Size

15KB
MD5

55223d7dfdaa1b7ef48d01e35790b758
SHA1

7f3cf9724ac145e71823e4c38f4fd685d90dda13
SHA256

ce31b3da028bfc78ff5522880043a902bcabcf31ce9aeb55902cc1ad17a7f3ce
SHA512

69d35e4f1aa9261c0d826d007c4632b6aa6a1ef8817c5d18659f0c68da60defde9c203422472dc05ad7e955747e3a56e47e7f89f8b8e7b8c4e50105f01d06e00
SSDEEP

192:xp9V8OUNmAhGnuvoQQzo9WyC5buvwuKmltjbLaspOR8nT6Ksh732PTz3jT:rf8tRQ08bQKmllisMR8nJshL0X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55223d7dfdaa1b7ef48d01e35790b758

Files

55223d7dfdaa1b7ef48d01e35790b758
.dll windows:6 windows x86 arch:x86

28baead885df8b741d908af226efcc1d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcessHeap
EnumSystemCodePagesW
HeapAlloc

mpr

WNetDisconnectDialog1A
WNetGetResourceInformationW

mswsock

GetAcceptExSockaddrs
WSARecvEx
sethostname

setupapi

SetupDiSetClassInstallParamsW
SetupDiRemoveDeviceInterface
SetupDiClassGuidsFromNameExW
SetupDiGetDeviceInstallParamsW

rpcrt4

RpcRevertToSelfEx
RpcServerTestCancel
RpcServerUseProtseqIfA
I_RpcParseSecurity
RpcSmEnableAllocate

msi

ord146
ord76
ord18
ord74
ord47
ord104
ord143
ord171
ord154
ord115

loadperf

LoadPerfCounterTextStringsW
UnloadPerfCounterTextStringsW
LoadPerfCounterTextStringsA
UnloadPerfCounterTextStringsA

shell32

ShellExecuteW

ole32

CreateBindCtx
MkParseDisplayName
CoTaskMemFree
CreateFileMoniker

msvcrt

_adjust_fdiv
malloc
_initterm
free
memset
memcmp
wcschr

Exports

Exports

mhdef

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 20B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

28baead885df8b741d908af226efcc1d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

mpr

mswsock

setupapi

rpcrt4

msi

loadperf

shell32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 5KB

.bss Size: - Virtual size: 20B

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 5KB - Virtual size: 5KB

.rsrc Size: 512B - Virtual size: 504B

.reloc Size: 512B - Virtual size: 308B

.text
Size: 5KB - Virtual size: 5KB

.bss
Size: - Virtual size: 20B

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 512B - Virtual size: 504B

.reloc
Size: 512B - Virtual size: 308B