3b38aaf5c9952199bae6954ccf4b0bfe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b38aaf5c9952199bae6954ccf4b0bfe
Size

752KB
MD5

3b38aaf5c9952199bae6954ccf4b0bfe
SHA1

37058596e979b4c5bc4fcea64e093e1e47b104c8
SHA256

3f6a77701797df5fcd146e63d0f3e29cb0d0bd274f4b4ccc684fcb613b94ecbb
SHA512

089f7a823832aacf78e3c7074fc10ef2ef7f3bd2f1c069d6544f9feeee4fd52725f81d31280ec0c0394460e8e4ac0b8d4a2ba7880519e94381bcd75948bb7721
SSDEEP

12288:sqV/mY7cT7l35vb+iHkP+so6U9opNmx4AXZbNIHSAOwRc2YhFjOvKPV3i3QTcDHA:sqxI5lb+kriTE4AXhNIHH1W2y730EkHA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b38aaf5c9952199bae6954ccf4b0bfe

Files

3b38aaf5c9952199bae6954ccf4b0bfe
.dll windows:5 windows x86 arch:x86

54cd689308de4e61df1fcbc3dca3e925

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedCompareExchange

Sections

Size: 89KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 828KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zntzigne
Size: 656KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wiugwdvl
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE