4cb69fbb36c2e79ee4808a7ee4bf446e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cb69fbb36c2e79ee4808a7ee4bf446e
Size

116KB
MD5

4cb69fbb36c2e79ee4808a7ee4bf446e
SHA1

f4938bbeec903760136283c91a1e60c6cf61a167
SHA256

bd3f08746972bec78e942eeb2fb905fdf9ac87eaa43405311cdf9b5d4dae0065
SHA512

7f12ea5fbe4cab04b71101640721a0b5d2ceab58a1e28e25c4f131d01120a2be65dc5da807b4fa0eed9f845a08857b6bbf557e8a978c30e2b0d623627b034777
SSDEEP

3072:jqApg5rjCjslMsmqZgnRwbLcRAMbCRvB:mApgdCG0uLcOOA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cb69fbb36c2e79ee4808a7ee4bf446e

Files

4cb69fbb36c2e79ee4808a7ee4bf446e
.dll windows:4 windows x86 arch:x86

d71ff74ccfe699004afc74c243196b27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

AllocateAndInitializeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetFileSecurityA

version

GetFileVersionInfoA

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 574B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ