27869b57639ec3579356bf919234c5d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27869b57639ec3579356bf919234c5d3
Size

33KB
MD5

27869b57639ec3579356bf919234c5d3
SHA1

5841c94fc05f80191bc4bcd9f94a443c3b034daa
SHA256

73f515da3ce7e73270ac91303dcbc443bebf27ff8645f2df262e5755be8a1873
SHA512

4f5c330538db1e9b597baa8c0188a92a5934b718cc3cf76b3bad8738fa4605e10655ed367ce365613145dcc0cbbf0f37822b4cc43066b53d9d30e2650cb7c017
SSDEEP

768:ExgQ8MehHOFT9JTvWcbNwHOE1FUv49+w5Fk:Em/MehmTXLWciFUq5F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27869b57639ec3579356bf919234c5d3

Files

27869b57639ec3579356bf919234c5d3
.dll windows:4 windows x86 arch:x86

c46f63b39748a7246f5df41cc3bf81f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DrawMenuBar
DrawTextA
DestroyWindow
EndDeferWindowPos
EndDialog
DestroyIcon
DestroyCaret
CreatePopupMenu
CreateMenu
CreateMDIWindowA
CreateIconFromResourceEx
CopyRect
CharUpperBuffA
CharToOemA
CharLowerA
BeginPaint
EnableScrollBar
ActivateKeyboardLayout

kernel32

lstrcatA
UnmapViewOfFile
TlsGetValue
TlsFree
SetCurrentDirectoryA
ReadFile
OpenFileMappingA
InitializeCriticalSection
GetVersionExA
GetFileSize
GetCommandLineA
lstrcmpA

Sections

.text
Size: 15KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ