243f752a802b50bc54f1329f3a8f6a6c | Triage

Sharing

General

Target

243f752a802b50bc54f1329f3a8f6a6c
Size

46KB
MD5

243f752a802b50bc54f1329f3a8f6a6c
SHA1

992ffcda96f1c12db54534a4cbc14d4f5fd4e298
SHA256

e49a0f7b95bd09776a852a83218a6d09008acdf7d2f5f3934c9913e015abe205
SHA512

d9b2302ef54ea8acd4ffc35e7a1f9ed834ca76a4887dea0f5f52693fcc05edbc9c3ea03890a21bba8469a2a26447358388050832886e4c36a336e7b6b6cc5a9a
SSDEEP

768:OEYjvB19pLZKeUYmDT9SGv+aw+CKjY2o:PYjZxLZvUjPVGW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
243f752a802b50bc54f1329f3a8f6a6c

Files

243f752a802b50bc54f1329f3a8f6a6c
.dll windows:5 windows x86 arch:x86

b4e707e9acecd405bdd67065419b8250

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ntoskrnl.exe

ExAllocatePool
MmUnmapLockedPages

hal

KfLowerIrql

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ