3f9d69f5339c8ef9ea37da6c5237204b | Triage

Sharing

General

Target

3f9d69f5339c8ef9ea37da6c5237204b
Size

5KB
MD5

3f9d69f5339c8ef9ea37da6c5237204b
SHA1

71305f1ff97818d145ab5ad46600bea4e99e9243
SHA256

4a90f6ab5ae2a29494f0a44d6c0df4d4dd7df861555129f3c98ca850c9a00a64
SHA512

a1f0f641011aa2615ed160ad6e5e99b515337474c01c2751eaa92a1b5d1910dbd92b025f0bdfa73d8cba139c0694cc9f2ccfd66d7e41d453e81f16d950184b41
SSDEEP

48:i7HX78oU2lppCIJ2PtSV0mj9Ns/YgnvpIj872vYVpz1GlINBrXfZLfoFLN:qHLEO0tu0mhN+a872vq1+INBtLfo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f9d69f5339c8ef9ea37da6c5237204b

Files

3f9d69f5339c8ef9ea37da6c5237204b
.dll windows:4 windows x86 arch:x86

29335aafe6be1b8151c166ae79d8ce78

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

InternetReadFile
InternetCloseHandle
InternetOpenUrlW
InternetGetConnectedState
InternetOpenW
InternetAttemptConnect

kernel32

CreateFileW
MultiByteToWideChar
CreateProcessW
lstrcatW
WriteFile
CloseHandle
GetSystemDirectoryW
ResumeThread
Sleep
lstrcpyW
CreateThread
GetModuleFileNameW

user32

CharLowerW

advapi32

QueryServiceConfigW
OpenServiceW
OpenSCManagerW
ChangeServiceConfigW
CloseServiceHandle
CreateServiceW

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 422B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ