3f3f696fe7648f5d15c384d0ae1c1bd8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f3f696fe7648f5d15c384d0ae1c1bd8
Size

8KB
MD5

3f3f696fe7648f5d15c384d0ae1c1bd8
SHA1

29cee45d6c712c70e042b352403162a39c514ee4
SHA256

6285103f5e0d01c5920686ed1d582ffb5c94f0b1d7aa751a10240186037f0c82
SHA512

53051286ce7b71398896bcc938f36e8b501bf8c1a82b4cedfef0970d44fc92a9aee506820245041f04ee112b760e4e5a4152b6598a867e94356d7ba425f7cf47
SSDEEP

192:epdZN2W8/zASb8SJPjrqX8c3WE3CJTWrIMwya:UHNk/028SjU8IWSCJTWrdwya

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f3f696fe7648f5d15c384d0ae1c1bd8

Files

3f3f696fe7648f5d15c384d0ae1c1bd8
.dll windows:6 windows x86 arch:x86

07e31ec26fe7b4d435fece8a0a2f8790

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_except_handler4_common
_adjust_fdiv
_amsg_exit
_initterm
free
malloc
_XcptFilter
memset

user32

LoadStringW
MessageBoxW

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
DisableThreadLibraryCalls

Exports

Exports

DllMain
EditAuditInfo
EditOwnerInfo
EditPermissionInfo
FMExtensionProcW
SedDiscretionaryAclEditor
SedSystemAclEditor
SedTakeOwnership

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ