00d635c1df66549c968cb8d296ff12d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00d635c1df66549c968cb8d296ff12d0
Size

65KB
MD5

00d635c1df66549c968cb8d296ff12d0
SHA1

0c55fe6bc942160c2236db8242be5cb5a4f934a3
SHA256

32fdb248476266e4e29e857cb31f2e8333adde4696fef1983697d6db5d2d4192
SHA512

cc81afe10f08e48d22f5c05a82225fc474ad1ea96b3fb0815f3e8a2a24edbf096c24db0f45550e7151a302c6645a1a6f5d2fb5c2079c4d5cdc2311024fc156eb
SSDEEP

1536:/cxPmcVDC1Nvm8YxRF0d+0/a8Iw7YWejRsUf8Y7OgxjMJ0x:Ep3DC1w8YG9/a8IOYWejRsUkzooJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00d635c1df66549c968cb8d296ff12d0

Files

00d635c1df66549c968cb8d296ff12d0
.dll windows:4 windows x86 arch:x86

bf1d4ac97a7a7b9ce26961535e00073d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CheckMenuItem
wsprintfW
LoadIconA
DrawIcon
CreateIconFromResource

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

Exports

Exports

diuu

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 490B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ