66544fc7305435fc2f1cd1159dd2d760 | Triage

Sharing

General

Target

66544fc7305435fc2f1cd1159dd2d760
Size

16KB
MD5

66544fc7305435fc2f1cd1159dd2d760
SHA1

a8d68aa228cc60b32b423499ffb3ba2ec2bca1de
SHA256

11d96b769159648aeb8e7ba7983771bcd3a82d62755a9f7a75253e53b46946e3
SHA512

cfa0d2626ec20f5f8f9da8e308bf4ae42359f61e634fbd39dc2684cf2251eda3196d1b7ab7b04545e40b365442bd6c2a008716ca12f1d69318f184d64ebc9635
SSDEEP

192:nb45fKV6Zdi9ag7QRRkce/P27DMuaYY756XwslWkfZqdsRxMZ5H3zLOwtv3hwhHZ:b4hKV6ZM9xkHUuNyTsIk4dsc3DC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66544fc7305435fc2f1cd1159dd2d760

Files

66544fc7305435fc2f1cd1159dd2d760
.dll windows:1 windows x86 arch:x86

7079cb4c045816b62be36bcd3f08cfdd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

WaitForSingleObject
VirtualAlloc
GetDriveTypeA
CloseHandle
ExitThread
VirtualFree
CopyFileA
CreateDirectoryA
CreateFileA
CreateMutexA
CreateProcessA
CreateThread
WriteFile
WriteConsoleA
GetEnvironmentVariableA
GetLocalTime
GetLogicalDrives
GetModuleHandleA
GetSystemDirectoryA
SetFileAttributesA
Sleep

ole32

CoUninitialize
CoCreateInstance
CoInitialize

advapi32

RegEnumValueA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegCreateKeyA

oleaut32

SysFreeString

Sections

CODE
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE