640648fd738707f20354bfc03b8caf55 | Triage

Sharing

General

Target

640648fd738707f20354bfc03b8caf55
Size

64KB
MD5

640648fd738707f20354bfc03b8caf55
SHA1

8d03696f185fe91f51b4191643249737d7f8467d
SHA256

109e75cc109a6e685df30fe3dee690c50507e9b962883f0de8ea8aba781b0f45
SHA512

72e8d156b58803a8ab38d49993b7a95e4a2ff4432f5cbb81a01e6b9818384fc6bf037d4f12ec9f08073f008893221ba58391cf3819c2f064f9b26f46de870a80
SSDEEP

1536:YWbo5gHoGK1uMdfpWeDX3t6q9qzSWSNjN6Fb7Sn9:XoOHo5rX8qMTcSS9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
640648fd738707f20354bfc03b8caf55

Files

640648fd738707f20354bfc03b8caf55
.dll windows:4 windows x86 arch:x86

a2f5e105e455b838c8d9b74f9927d15c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CompareStringA
CompareStringW
CreateMutexA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileSize
HeapAlloc
HeapCreate
HeapDestroy
InterlockedIncrement
IsBadReadPtr
LocalFree
LockResource
RtlUnwind
SetFilePointer
TlsFree
TlsGetValue
TlsSetValue
lstrcpyA

user32

CallWindowProcA
ClientToScreen
CloseClipboard
CreateWindowExA
EnableMenuItem
GetClassLongA
GetCursorPos
GetDC
GetDlgCtrlID
GetSysColorBrush
GetSystemMetrics
GetWindowTextLengthA
LoadCursorA
MapWindowPoints
ReleaseCapture
ReleaseDC
SendDlgItemMessageA
SetActiveWindow

Sections

CODE
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ