134e4ffe20517166668f3fb296d0364f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

134e4ffe20517166668f3fb296d0364f
Size

79KB
MD5

134e4ffe20517166668f3fb296d0364f
SHA1

008d9029d3a18f37d4ecfd33bbaea0ebd0f85587
SHA256

786f0f95be73a65c2ee3810236e7c56443c1efdc763bb7220ee4b295c046bee0
SHA512

ffeea0261e243ba98fa118e07048d38f48817d1decc486a61ec1f645ccdef7b1028f2908ef7a2997206357269729646c2dcb3fb8b843d6fa19331c699f5ab888
SSDEEP

1536:57eLxGuCgvmUbhtKKTA9lIJMgLLW3CPeOQQ/houyQRY:5aLcuNvm+ilIJMgLS3CrQQ5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
134e4ffe20517166668f3fb296d0364f

Files

134e4ffe20517166668f3fb296d0364f
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 5KB - Virtual size: 96KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE