5117367eb536360dd103f69b68695433 | Triage

Sharing

General

Target

5117367eb536360dd103f69b68695433
Size

24KB
MD5

5117367eb536360dd103f69b68695433
SHA1

06ed2a376cfd3442687ff698bd97b0d1c84b9310
SHA256

0a474fa4fb5b183c065093b5f562154caca83cbf02359e5d297b37ebfee375c5
SHA512

1482ea454c62658b619d063f29be638003039c823b00f60e68377da9f5dc79fd8f4a63529505be9bae21e01a117ece192f891fa4717313b9e1609563acb468b5
SSDEEP

384:wQOnbUSMazC8uxxPA8pmGQY6DiPemmc1D6h3I34bxzAbDWtskN5nFXLpE:FEUSMamHxi8pmG3m43gzAbDesm5n4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5117367eb536360dd103f69b68695433

Files

5117367eb536360dd103f69b68695433
.dll windows:4 windows x86 arch:x86

19f25dda111a710fd9da7b372afa9f4d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnterCriticalSection
GetDateFormatA
GetStartupInfoA
GetVersion
GetVersionExA
LeaveCriticalSection
LocalAlloc
OpenFile
Sleep
VirtualAlloc
lstrcpynA

msvcrt

_exit
_wcsicmp
wcscat
_XcptFilter

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ