97fc498548d4ec7e8114f0aaa9e7fe16 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

97fc498548d4ec7e8114f0aaa9e7fe16
Size

4KB
MD5

97fc498548d4ec7e8114f0aaa9e7fe16
SHA1

8fa036f9c8633bc1af451f27a7e166a059e58304
SHA256

c21a4da55acf5109b746c49b799deace2c737217789aac8fc474e6b09d851210
SHA512

a2f2ff760babddf2bbbd627af794b0210405bcfd47831d18be8dc5d399ae508fcd867bfc971042d095f440b2c6847c126870530ad9ca15103c8597a91c7f1c9c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97fc498548d4ec7e8114f0aaa9e7fe16

Files

97fc498548d4ec7e8114f0aaa9e7fe16
.dll windows:4 windows x86 arch:x86

218a3d0359f7f2288d81dd615505fc5a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

msvcrt

fclose
??3@YAXPAX@Z
fwrite
??2@YAPAXI@Z
fopen
sprintf
free
_initterm
malloc
_adjust_fdiv

kernel32

CreateThread
GetSystemDirectoryA
lstrcatA
GetFileAttributesA
CreateProcessA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 282B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ