56ee53e2bc080a4d99b5d9fc4ec46378 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56ee53e2bc080a4d99b5d9fc4ec46378
Size

100KB
MD5

56ee53e2bc080a4d99b5d9fc4ec46378
SHA1

3cb9c4aa9e649c56cab8d5a64ade6bf46b5352bc
SHA256

de4d46b0130ddf2418ba8a5d1e69ef6b875651b567e7a5881ae70d7813ab48f9
SHA512

a59dcb018033c7a1aef3c30ab1fdecb1dc217a95a062ed02492bbbe4876f48f7a92ad6727a9677222103d2d236fd99ceaa309a2e8890735463e306e5e01b7783
SSDEEP

1536:X9ucjRl78Czr1JLRsIEBSceBYE+D8gO/fych/V:1L7jVJLGBSckYjw3yOV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56ee53e2bc080a4d99b5d9fc4ec46378

Files

56ee53e2bc080a4d99b5d9fc4ec46378
.dll windows:4 windows x86 arch:x86

35ca184e0db773dfbcf08aef1ae866f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WaitCommEvent
SetLastError
CmdBatNotification
CancelTimerQueueTimer
DuplicateConsoleHandle
InterlockedIncrement
FileTimeToLocalFileTime
SetTimerQueueTimer
DeleteTimerQueueEx
FormatMessageA
WaitForSingleObjectEx
FatalAppExitA
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

icode
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

idata
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ