522cd5240e1862d80ca0d4fe430ab77c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

522cd5240e1862d80ca0d4fe430ab77c
Size

8KB
MD5

522cd5240e1862d80ca0d4fe430ab77c
SHA1

91619c9902f921029e34f0ea82bf57d41e94ba90
SHA256

a8d46434b905da9c3d5c7881603c1c3e998d4ee46929cafa3edf7f4d9d75857c
SHA512

5902b8dc61c9db08415cf1e4d3d678e2fd08eeedbab4a96c80ab3bc8537a78cab8954d1e3ca1226d66a8dd44a3f041f3a86111cffb77955facf9d5ec16f946db
SSDEEP

192:oYhGpoLlQ4n9OXVYQMclRGoVqdMUFMqAZ90x2WeM:o6GKLmJXVYQLTGQARk90Ai

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CnsM.dll

Files

522cd5240e1862d80ca0d4fe430ab77c
.cab
CnsM.dll
.dll regsvr32 windows:4 windows x86 arch:x86

7a25229d42558fb3bb9635a6e06b3605

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
LoadLibraryA
GetModuleHandleA
MoveFileA
DeleteFileA
VirtualQuery
SetLastError
VirtualProtect
GetProcAddress
ExitProcess
SetUnhandledExceptionFilter
WriteProcessMemory
GetCurrentProcess
GetVersion

user32

SetWindowsHookExA
CallNextHookEx
FindWindowA
SendMessageTimeoutA
MessageBoxA

msvcrt

_strupr
_adjust_fdiv
_initterm
free
malloc
memmove
_vsnprintf
fopen
fseek
fprintf
ftell
strstr
strncpy
strrchr
fclose

Exports

Exports

DllRegisterServer
Rundll32

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shared
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ