0001daf4c0a523020f53a6f5a3b2e99a | Triage

Sharing

General

Target

0001daf4c0a523020f53a6f5a3b2e99a
Size

24KB
MD5

0001daf4c0a523020f53a6f5a3b2e99a
SHA1

6d7e1a7b99f6c70f5f94355c8c1343bf8abe3b08
SHA256

64e68f8d6081e941970e33957c3bd82de9a99a5ba813eca2d41959466f4a0a18
SHA512

f8919478147cbb4aeb098ee7a55fb78e8cc26252029d42cf8ebb545ae895b861cb03c660e00a7cec28cf05c658f839bca7c21bce9d0b26534ffe0e197bbc0d70
SSDEEP

384:WidD9d6GA2ywjeILICjsibtySylEeOGGz9bCVKaK94ySyZ7jVYTizEcVA9sjGbc:PW6ekI5CySq3KJbCGBNVYTCEcy5bc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0001daf4c0a523020f53a6f5a3b2e99a

Files

0001daf4c0a523020f53a6f5a3b2e99a
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnHookWindow

Sections

CODE
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ