1ce2ad0607e90dd209178e53d193a58b | Triage

Sharing

General

Target

1ce2ad0607e90dd209178e53d193a58b
Size

299KB
MD5

1ce2ad0607e90dd209178e53d193a58b
SHA1

b46d8155ef68f312bfc1d4ababb29cd1615bcfc9
SHA256

52e31fe3a868e269990b40e21937791d8a68c5ed8eb1df03d698a6ae5b8aef5b
SHA512

a0fd101e86b3c6fe50045665ecc04872eb93a0f51e116ea26346bb8f8985fea97392a811c1535fd7c1dcf77d8b000af765eef57f69c1f15e542421bd9ca56df0
SSDEEP

6144:YXNUYVFwAfGuLmRfuAr7pIqcmqBpRimSTB5wr+/Lg0f:YXNP/ZLUfuA/pVqBpAmSl5GOLgi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ce2ad0607e90dd209178e53d193a58b

Files

1ce2ad0607e90dd209178e53d193a58b
.dll regsvr32 windows:6 windows x64 arch:x64

35890417b8426ce9add593489cc763e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

GetThreadPriority
TlsGetValue
WaitForSingleObject
GetCurrentThread
VirtualFree
VirtualAlloc
GetProcAddress
LoadLibraryA
GetSystemTime

Exports

Exports

DllRegisterServer
DllUnregisterServer
PauseW
ResumeW
StartW

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ