0b335d1169dbce3541b065485506e587 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b335d1169dbce3541b065485506e587
Size

93KB
MD5

0b335d1169dbce3541b065485506e587
SHA1

e4cb2e90bd8572639fa9c161775d3caaa0df0202
SHA256

ca83828084c36d07cfda74c959ba9a39751ab77272378cbbff80d029632fa5af
SHA512

20506dbe8c3e3fa095f5bbfb4cca162319cf0ec74861f2541744739b02964125be822f74b58bea487497fad386b30618ad770d8318f04f60513e85ebb048f103
SSDEEP

1536:78hffopwPCxj62JnokRqsCjor95hdhV4PGH60bIaEy2YiHzspnZIOTGL9lDWPxe:aYWPCY2eZc9Z60bO1PQGplgc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b335d1169dbce3541b065485506e587

Files

0b335d1169dbce3541b065485506e587
.dll windows:4 windows x86 arch:x86

c0151f0c7864c5f3f5a5ea7e17139d8d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
FlushFileBuffers
GetSystemTime
GetVersionExA
InitializeCriticalSection
MapViewOfFile
OpenFileMappingA
VirtualAlloc
VirtualFree
lstrcpyA

Sections

.text
Size: 26KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ