070b7c808dde681ea12357bba794c849 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

070b7c808dde681ea12357bba794c849
Size

5KB
MD5

070b7c808dde681ea12357bba794c849
SHA1

5f18281fc471a4db0a90df0071836161387af423
SHA256

cb77691e9e1e6565ae41a5a11935ed9c987a0dd22261f9d3e3836e2f196d4514
SHA512

0eda5208d5c93d7b3831986d017a668d6bca66ca1858d960d7563434648bb6f26ad8f173f86199086ee6d9db12735b7dbe3b009690fd925482187c8cf6f0fe08
SSDEEP

48:isXw7pO9fV/LiF1RCtnulr+0u7eIq/aah69/7p+l2dPIRl7b2rVVHXhsB2rOTj:H9f9L0C9I+xi69/a2dPel7b2rVha

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
070b7c808dde681ea12357bba794c849

Files

070b7c808dde681ea12357bba794c849
.dll windows:4 windows x86 arch:x86

7fa280445e2b0623f4e0c245b1d0bd24

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

wsprintfA

kernel32

LocalAlloc
LocalFree
LoadLibraryA
lstrcatA
lstrcmpiA
GetProcAddress
lstrlenA
FreeLibrary
WideCharToMultiByte
lstrcpyA

advapi32

RegQueryValueExA
RegCloseKey
RegEnumKeyExA
RegCreateKeyA

ole32

CoTaskMemFree

Exports

Exports

passwords

Sections

.text
Size: 2KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 629B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 430B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ