0e4c89999b6d2eb5ad420a7c64a862ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e4c89999b6d2eb5ad420a7c64a862ce
Size

82KB
MD5

0e4c89999b6d2eb5ad420a7c64a862ce
SHA1

18655e37c71aecd52af5059ac80867af412bc9ea
SHA256

c61e7bd4ad9fd16bffa2c4e0644a2b5b1c3ad0d4148f21214d15ad2053afa75c
SHA512

b43901a88a19a63fa23957834d5cefecf9d417a71d62bf2501882e6d5e26513f4ea8ba346a51b77be97ae2c4062cedcbe82af790528ecc38d83c523c9c0018d9
SSDEEP

384:IZvFDW7tAiQe/berHd0QU5hLDVwxLXn9URjK9m:IHji36DdQvMLXn9URj/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e4c89999b6d2eb5ad420a7c64a862ce

Files

0e4c89999b6d2eb5ad420a7c64a862ce
.dll windows:4 windows x86 arch:x86

140e79f8cc40f3d40a8ab52ab9c9a43d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

InvalidateRect
GetSystemMetrics
TrackPopupMenu
GetSubMenu
LoadMenuA
DestroyIcon
SetForegroundWindow
TranslateAcceleratorA
LoadAcceleratorsA
FindWindowA
IsDialogMessageA
DestroyMenu
PostQuitMessage
PostMessageA
GetDlgItem
MessageBoxA
SendMessageA

comdlg32

GetOpenFileNameA

comctl32

ImageList_LoadImageA
ImageList_Destroy
ord17

shell32

Shell_NotifyIconA

Exports

Exports

DelPlugin
InitPlugin
PlugVer

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ