77b369ca0b4585ec362c18f9b77a1183 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77b369ca0b4585ec362c18f9b77a1183
Size

4KB
MD5

77b369ca0b4585ec362c18f9b77a1183
SHA1

c74a51f3690e6ed3bd2176c92e887fe7c2a9c75e
SHA256

c881b92ba96e19267ad322fd436e40421cf3ce033e3bf232556330cba03a9380
SHA512

c86d8fe425c28e9f86060edeabff8947c702ed0708c5d0086c0f7d389da93c08e8b07c3289b42acc4ee6fbadc2b87693ae053267bead3fe069b135f7d8333c16
SSDEEP

48:qHKKBI0alPa4/84d17I0iOoZtzTIJtyt6QQiRF9G2+6jjDdrQAAvmvuGJA:ZyGlPt84dBIoCwtyt9QiRFVzdrVTuYA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77b369ca0b4585ec362c18f9b77a1183

Files

77b369ca0b4585ec362c18f9b77a1183
.dll windows:4 windows x86 arch:x86

d3334f05de7e1b8882580eb26aab706d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

InternetCheckConnectionA

kernel32

CreateProcessA
GetVersion
Sleep
GetTickCount
GetModuleFileNameA
DisableThreadLibraryCalls
CloseHandle
WriteFile
SizeofResource
CreateFileA
LockResource
LoadResource
FindResourceA
DeleteFileA
WaitForSingleObject
GetSystemDirectoryA

msvcrt

rand
srand
_beginthread
strstr
sprintf

shlwapi

PathFileExistsA
SHSetValueA
SHGetValueA

ole32

CoInitialize

Exports

Exports

DllInstall

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 194B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ