4b944c14b03f6bd18e73ae1e8b1c8c0a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b944c14b03f6bd18e73ae1e8b1c8c0a
Size

58KB
MD5

4b944c14b03f6bd18e73ae1e8b1c8c0a
SHA1

7bfd734a4edb28227462b2ca082088f302262f8b
SHA256

79f8750ba43d3e1292d8593df095f338d548db1785e419cc512f92dbd80aec13
SHA512

a6dc3c786bda594f5629def3c47faf68e7a1758b8b07cdb71b1f4c2ecc3dfb50e3119bc37c75510252ed4e38075582f2d8ed117e69bb1a9a34c0493d28f5e7bd
SSDEEP

768:6GdPr3UF6KNao0PJmsPWH6CH0NtsG2EZnQLA0TErAh/l1LtWLUbCs:nJrzKg1vCUNuk90tl1IsCs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b944c14b03f6bd18e73ae1e8b1c8c0a

Files

4b944c14b03f6bd18e73ae1e8b1c8c0a
.dll windows:4 windows x86 arch:x86

b14b33822af327d63b2af335343e10d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentDirectoryA
GetProcAddress
GetTickCount
LoadLibraryA

user32

DispatchMessageA
GetMessageA
TranslateMessage

advapi32

RegCloseKey

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ