cad7dbc2fbf4f4f0426a4f0a467d394d48534e22a3013d6b525fef5c3e976a28 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cad7dbc2fbf4f4f0426a4f0a467d394d48534e22a3013d6b525fef5c3e976a28
Size

2.1MB
MD5

824ccd36914386ef3376494c93dc2e8f
SHA1

4fb7898a439b0cecd856f8e6ba434728e6b3e4dd
SHA256

cad7dbc2fbf4f4f0426a4f0a467d394d48534e22a3013d6b525fef5c3e976a28
SHA512

bfe6e970c5e44d56d9a1523ca3259a08daeaa4af1c9fb230afc58b216944165c44f44dc80f4a3cb510a04dc3921c76e8fd458112ae88aa11b75633690a5c9bd8
SSDEEP

49152:j5ulldrv5+K6O0b+y3S+DqmufdMoHn+nZSR:jIjW9XzuLH+n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cad7dbc2fbf4f4f0426a4f0a467d394d48534e22a3013d6b525fef5c3e976a28

Files

cad7dbc2fbf4f4f0426a4f0a467d394d48534e22a3013d6b525fef5c3e976a28
.dll windows:5 windows x86 arch:x86

6334b73e206dbd6b06f0bfdf25684f00

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

m:\T7UaK.pdb

Imports

ole32

RevokeDragDrop

wininet

InternetAttemptConnect

kernel32

UnlockFile
GetBinaryTypeA
GetTickCount
TzSpecificLocalTimeToSystemTime
GetVersionExA
GetUserDefaultLangID
LoadLibraryA
GetModuleFileNameA
GetModuleHandleW

oleaut32

QueryPathOfRegTypeLi
GetErrorInfo

user32

GetPriorityClipboardFormat

rpcrt4

RpcServerUseProtseqEpW

msvfw32

ICSeqCompressFrameStart

Exports

Exports

TfoerieuhIelsteoneio

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CRT
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ