3b48e0023c2af6691f080a1d9e4e9398 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b48e0023c2af6691f080a1d9e4e9398
Size

25KB
MD5

3b48e0023c2af6691f080a1d9e4e9398
SHA1

5136255dbf61ef842465eef130ea34ca55a64867
SHA256

abf08b40ec5135dc82ba3009328a053e6c8f50328529eae101c788eee6b37351
SHA512

a005d8a36d298dbc2a80db9407ca1095f31e7cda041de842a0a3759dc8467cd533aca6b4bd63f24d767818524ba6c1ddcbaeb8e8ddf03515f1ecc58bfb461ff4
SSDEEP

384:8FL3Z1mGLDZEHojFbQ6nA3cFzodx5oS2dbjLn1+kQbl0Un0SzMJ4rSrPJL:8FL3Z178F6AYo/2n9Qbl0U/AJ9rP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b48e0023c2af6691f080a1d9e4e9398

Files

3b48e0023c2af6691f080a1d9e4e9398
.dll windows:4 windows x86 arch:x86

b0c45f3b30f1ac2ad1c574d873c9bee5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy
DelayLoadFailureHook
ReadConsoleOutputA
TlsFree
SetConsoleTitleA
SetThreadAffinityMask
CopyFileExA
BuildCommDCBA
SetConsoleCursorMode
SetConsoleCursorMode
GetConsoleAliasA
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

icode
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

idata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ