154f6539da5494d81d2d3dce8854a8a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

154f6539da5494d81d2d3dce8854a8a6
Size

69KB
MD5

154f6539da5494d81d2d3dce8854a8a6
SHA1

c3ddf23de0430895b0422059fa30b2981d319e5f
SHA256

b4a11298fc956b48cfb4a254148064dff2e7473a96195607fb144a036b3a97ba
SHA512

201cad9343e5e5f3a94f345a459c81d3414a7adf66a56fcaafa7a63e3df77e8aa3ed0f6ed5fcf22bc7f1ece386ffbac6f09c270c8588eb22dd678f89bbc65e8b
SSDEEP

1536:b5PzKD0G/fA3wS4Qicb6rGerxr8m45xHtuzeow8/:1m4GXA3wS4QKqerxIN5xNu65

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
154f6539da5494d81d2d3dce8854a8a6

Files

154f6539da5494d81d2d3dce8854a8a6
.dll windows:4 windows x86 arch:x86

3b6e3b0f276cd8981b021d6bbced6749

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

kernel32

ExitProcess
GetSystemTimeAsFileTime
CloseHandle
GetStartupInfoA
GetModuleHandleA

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 18KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ