74d5d1863f3826485e16bbefda582a2d | Triage

Sharing

General

Target

74d5d1863f3826485e16bbefda582a2d
Size

34KB
MD5

74d5d1863f3826485e16bbefda582a2d
SHA1

52cbbb8a8b3342420ba0aefec82d16171bb7eefe
SHA256

15136cbffefcd21a7a050092ce2f91a21e9b5afdf859dac21154192c38b54edd
SHA512

8cfe8bb2f140517754bbf7e76be534f1223086d8e2b7c5411fac6c0d0dd4d687507dc699302b7d2b54acb05871900bf284ed0042cce3543fd9d5234fcddf0a8b
SSDEEP

768:qe2uhhQRafgVUkkOlyIAtHHq0RPo878d6DQV+LB:z2udgNkl973DQVA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74d5d1863f3826485e16bbefda582a2d

Files

74d5d1863f3826485e16bbefda582a2d
.dll windows:4 windows x86 arch:x86

3b6e3b0f276cd8981b021d6bbced6749

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

kernel32

ExitProcess
GetSystemTimeAsFileTime
CloseHandle
GetStartupInfoA
GetModuleHandleA

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ