41c90b9d87463bdc86a7de130fb016cd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41c90b9d87463bdc86a7de130fb016cd
Size

82KB
MD5

41c90b9d87463bdc86a7de130fb016cd
SHA1

e49978814f965bb3ed5253a2b08c5a0b76006967
SHA256

3a91da5d4993eb8b94528dbfe1a288b6aaec4cd14869ff4fdee3a9449f5f607f
SHA512

b168a0f7fba26d730233a14154b4d7c5a6eff52ad6a5a64bfac7af6c3ef9e612de1d1d30e5c8be70d2590b5dbdcb6f5eb3b8beace0cad3d88bd1de4f58171680
SSDEEP

1536:ptLVqfSckxFSVVPuYJwvpz8kYPFw1rNSjp35724NoVVWZ5DnCCxcYW4n0z/mk5k5:ptggjSbPuYqpzdYNwFNSjp31NXDni+XP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41c90b9d87463bdc86a7de130fb016cd

Files

41c90b9d87463bdc86a7de130fb016cd
.dll windows:4 windows x86 arch:x86

0380a00e9a00ffdc03a97c8241595930

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ToAscii
FillRect

kernel32

LoadLibraryW
SetHandleCount
ExitProcess
FreeEnvironmentStringsW
GetACP
GetEnvironmentStringsA
GetTimeZoneInformation
GetUserDefaultLCID
LocalFree

advapi32

RegSetValueExW
RegCloseKey

comdlg32

GetOpenFileNameW
GetFileTitleW

Sections

.code
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ