8d77cdcd0de2cc338ecb457108f9689b | Triage

Sharing

General

Target

8d77cdcd0de2cc338ecb457108f9689b
Size

11KB
MD5

8d77cdcd0de2cc338ecb457108f9689b
SHA1

fe05ea22664486a363e6c28b0a33661d1209c555
SHA256

dd59b476f7426ff057a4ee80e4e095e66fd072c2e98ca175eebe5ffa0eb3aed9
SHA512

b1cedb826ba6e05c0edd6fda19aa85a17c4948216aa15ed8a607738179a292d01780f162c7ddd5b4e1a52fece327a26e12d984204e1b610247e589ddb1675e5a
SSDEEP

96:Fc34S2CvOvcITW96warGUG2nRF6YMdQK55+YyXXrh/sGgQ9nRVWWdSuCl:FcotyOcITW96wlwnRTK5ls9nRVWWd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d77cdcd0de2cc338ecb457108f9689b

Files

8d77cdcd0de2cc338ecb457108f9689b
.dll windows:4 windows x86 arch:x86

5dcfa6f3ec224c839fcbe3c0ce05cf21

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
IsBadCodePtr
FreeLibrary
VirtualProtect

msvcrt

strncpy
strstr
malloc
free
_snprintf

ws2_32

inet_ntoa
gethostbyname
gethostname
WSAStartup
send
WSACleanup

Sections

.bss
Size: - Virtual size: 536B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 222B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ