14d56b482e356f044c3ab3d3953a0608 | Triage

Sharing

General

Target

14d56b482e356f044c3ab3d3953a0608
Size

80KB
MD5

14d56b482e356f044c3ab3d3953a0608
SHA1

82ab3cd7dede9664a06979de39907b13e4eb01e3
SHA256

07d47775f0a98e5322cea0a91ef93132ab8700252ad06a9d9c19bbb6ec177284
SHA512

61280a8dfc37753e9328e2ade824ce61a9724bad594d34762d21a091e2d6844a4c68ba877234852f6d8a656de14d26e6ec9e0d3260a4f601cf9865715b16654c
SSDEEP

1536:kib2/4wxgB2U4qEpXuorgKKbtVoB99ltg9gOCAtkFEKn:F9+pXkKKWxIgOJ7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14d56b482e356f044c3ab3d3953a0608

Files

14d56b482e356f044c3ab3d3953a0608
.dll windows:4 windows x86 arch:x86

330f8d02f64eece468369efbfadc3fbf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EqualRect
FillRect
GetDC
GetFocus
GetMenu
LoadImageA
EndPaint
MessageBeep
MessageBoxA
OemToCharA
OemToCharBuffA
OffsetRect
EndMenu
EndDialog
EnableWindow
DialogBoxParamA
DeleteMenu
CreatePopupMenu
CreateIconFromResource
CharUpperBuffA
CharPrevA
LoadMenuA
BeginPaint

kernel32

Sleep
LoadResource
OpenFile
lstrcmpA
CloseHandle
OpenFileMappingA

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueA

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 36KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ