7956c9cdc24958eae2fd54636b39ad53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7956c9cdc24958eae2fd54636b39ad53
Size

2.1MB
MD5

7956c9cdc24958eae2fd54636b39ad53
SHA1

46362286bfc7c7560f14019c7b8772d17b118a6f
SHA256

7de7a82cbef97bd51feda1cc133d25d380778e1f0fecbddf86a96f9d63e641fe
SHA512

aee709d0a748c1a8c9d62e42e5663e63cb37c8e7d286755a3c091b995eb04f1b9b5f0cad7bdcaaaf16dee524c7677a7e734ae166295133adb34e64ced62bac1c
SSDEEP

24576:6ch9AsGyXvE/clq+9Au8cxqQSQ2IJe9E+r9xkPofGhIk3/fRxdTH7V1Wyp:6eMGtfhFe9nrcPyGhDfRHTH7Ttp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7956c9cdc24958eae2fd54636b39ad53

Files

7956c9cdc24958eae2fd54636b39ad53
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Projects\NetSpy\Distr\Inno Setup\MpkF.pdb

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ