4d62528df3771ba56e45a2548f3b19a4 | Triage

Sharing

General

Target

4d62528df3771ba56e45a2548f3b19a4
Size

128KB
MD5

4d62528df3771ba56e45a2548f3b19a4
SHA1

8aa1fe16fc7bec499fc5eb5ed745b51205737d85
SHA256

c2c88b84e38a0944cda57eff42fcd4052657da05048bb1132a07beca63ab6585
SHA512

823b0b5bb1bec017a5c6f1b97da7d3559f5a6234089c132118b9655b0b9ab6fb1064661d43f0708d26c3d5ea52acabcf7f8641f9dd68d4872a2af96676c24aca
SSDEEP

1536:bEwsthLuY3vJYUEPMVWwAenmB7IQPkcqR6IpL+uYCGYFhWOJFpwO+Xo0bJTWr+9i:Fs3lhLbDAbNH0RBMCGYjEO5wJ6KYup6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d62528df3771ba56e45a2548f3b19a4

Files

4d62528df3771ba56e45a2548f3b19a4
.dll regsvr32 windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 279B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ