8a1a4365b2fe06e6797e4dcc9b75b49b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a1a4365b2fe06e6797e4dcc9b75b49b
Size

1.7MB
MD5

8a1a4365b2fe06e6797e4dcc9b75b49b
SHA1

05ed1a7020117db92a6ddde0ab1bc6e43cea71ad
SHA256

fdf702d2daff582fca9d7f2d5ad4f129e945f2a0c901d2d9ab97c3202c731a67
SHA512

6cf57f15739f161e780a31ce24bad2a2a6d695011433990ae2d0fb341bde8f47c4aa46989b074ee5a3694fe85b80ad06a861b43abdeed87ec363e60e6ec463c3
SSDEEP

24576:wd5268z3FhBb+RGMZDY8Ssc6oB4vqOLd7LgiBA+jpW71ZQHivdyHfBEb/4Y40PZf:wy1X6l/oKLpgyjpW3IivQHSvxVZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a1a4365b2fe06e6797e4dcc9b75b49b

Files

8a1a4365b2fe06e6797e4dcc9b75b49b
.dll windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 287KB - Virtual size: 888KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tmrwwkxq
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zogwozyx
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE