1c0b9744b4ae0bbd71d477796c013ad38cf128b0d84c54d23fc644867f8ae50f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c0b9744b4ae0bbd71d477796c013ad38cf128b0d84c54d23fc644867f8ae50f
Size

2.9MB
MD5

0b57acd184980fb9c2fad42f17d534ce
SHA1

cc5f29915e6d0a3224b33ba5f7a5fa20b32685c9
SHA256

1c0b9744b4ae0bbd71d477796c013ad38cf128b0d84c54d23fc644867f8ae50f
SHA512

19cff11ebec1b4f07fa578c14b7b3f2b79e5f0672ce13397acaf8e45d049148d0c4c5cf198df980b7a8bc024b770aa13bd85d760791397c7c03e478055bbe697
SSDEEP

49152:uPXVYRkFDUZJL7OD+7r98U3P9qVeyqp4AFt8wUI6p2n812jx6A5RiQoBz:uPqRkqL7OD+7rtVqUNrE1gpRinB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c0b9744b4ae0bbd71d477796c013ad38cf128b0d84c54d23fc644867f8ae50f

Files

1c0b9744b4ae0bbd71d477796c013ad38cf128b0d84c54d23fc644867f8ae50f
.dll windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

B080223_AT
TMethodImplementationIntercept
__dbk_fcall_wrapper
dbkFCallWrapperAddr

Sections

Size: 977KB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vurxjpys
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xskoxxyh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE