403cb37e6d1f0c3e459e89a5df9ff97d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

403cb37e6d1f0c3e459e89a5df9ff97d
Size

169KB
MD5

403cb37e6d1f0c3e459e89a5df9ff97d
SHA1

2650a91072729eb8b9afd234d03c571355f11b1e
SHA256

254d3644c14d7a12035b5e37fa64669e6b3781bdc1f51cf1120a4d9fb3cd8f1b
SHA512

298ae856943b252bb5721a7591380f4ec959501f51a934e6e99b1b7a4600fba77b324d8456b8f8269da8551369aa7190bd44c0d9426e0a6b99ebb83e2e3fd519
SSDEEP

3072:PZ6BrIVKp22gKn+l+XC+fgvsJ2EoCFpwNwhC3mIzuDvJNyES3s:PZG0yX3IvsJ219NwhC347

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
403cb37e6d1f0c3e459e89a5df9ff97d

Files

403cb37e6d1f0c3e459e89a5df9ff97d
.dll regsvr32 windows:4 windows x86 arch:x86

a5b96ff0abb3de314bf5c8731143af29

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetConsoleScreenBufferSize
SetEnvironmentVariableA
ConvertThreadToFiber
SetUnhandledExceptionFilter
ResetEvent
SetConsoleMode
SetCommTimeouts
RemoveDirectoryW
QueueUserWorkItem
SetProcessShutdownParameters
CloseHandle

user32

GetWindowRgn
LoadStringA
LoadMenuA
LoadStringW
ValidateRgn
LoadMenuW
LoadMenuIndirectA

advapi32

SystemFunction007

gdi32

PtVisible
Rectangle
SetTextJustification

msvcrt

towupper
ferror
_ismbbpunct

shlwapi

SHQueryInfoKeyA
SHRegGetUSValueA

rasapi32

RasGetAutodialAddressA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ