1e1421f91b130842ef76f7d35d365622

General

Target

1e1421f91b130842ef76f7d35d365622
Size

122KB
MD5

1e1421f91b130842ef76f7d35d365622
SHA1

73cc0acb1f3fdc711bd0a841d3f494f684a6a169
SHA256

04a844813b51cccb115a947a22a56d2923a6cbb5f3817440ae9753ab3336e145
SHA512

49452b9970b3333d72a9a77ad0334ca4c00c932a00ea5338d06e5fdf8d7d8f98a083b01d6e0a4c8a11955c7a1d3b36a1776d1b226facb2948afd60a79f8bbd7e
SSDEEP

3072:T0nHCvdJ1goPoeTwtr6qK/mMJA6g3AhTfcYV:TciMr8qKHJAX3AFT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e1421f91b130842ef76f7d35d365622

Files

1e1421f91b130842ef76f7d35d365622
.dll regsvr32 windows:4 windows x86 arch:x86

52491920db12200fdb41302390873e64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapSize
OpenFile
GetProcAddress
GetSystemDirectoryA
FreeLibrary
LoadLibraryA
_lclose
_hwrite
_llseek
GetStdHandle
GetOEMCP
GetStringTypeA
CloseHandle
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetCommandLineA
GetModuleHandleA
GetVersion
HeapFree
HeapReAlloc
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
GetCPInfo
GetACP
MultiByteToWideChar
SetHandleCount
FreeEnvironmentStringsW
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
FreeEnvironmentStringsA
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetLastError
WriteFile
VirtualAlloc
SetFilePointer

user32

LoadStringA
MessageBoxA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52491920db12200fdb41302390873e64

Headers

File Characteristics

Imports

kernel32

user32

version

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 11KB - Virtual size: 17KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 85KB - Virtual size: 84KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 11KB - Virtual size: 17KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 85KB - Virtual size: 84KB

.reloc
Size: 2KB - Virtual size: 1KB