98ca4a1a1a645bc0a7181a2f59b85ada | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98ca4a1a1a645bc0a7181a2f59b85ada
Size

56KB
MD5

98ca4a1a1a645bc0a7181a2f59b85ada
SHA1

50a04450773c45034527b962f3fc653bd24c9cab
SHA256

bbadfa60dd7404cef315d95f37604284e3c6d4bd4c51d3965d553f35b9ca144e
SHA512

1cb78f4761ca593b0addc6e2ec8998d7c2e87b72a3a98d7ee27f9a98ccc0da77d1ba6189a349642584356ca9fa35895efdea4d3b0f46a74191cca061f254e213
SSDEEP

768:yzFIrj4TiquYjO4bOPNFpmDVXeG+ZNqj7OsxYMhuZBymfvAM9Os621WereUyRhOh:yRIYGwjsmDok7OsAn1jNWe6UyRh+Ye

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98ca4a1a1a645bc0a7181a2f59b85ada

Files

98ca4a1a1a645bc0a7181a2f59b85ada
.dll windows:4 windows x86 arch:x86

5d108cb36c9d5d6db4cb4f24a0da1270

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DeleteMenu
DefDlgProcA
CreateMenu
CreateIcon
CopyRect
CloseWindow
CharUpperBuffA
CharToOemA
CharLowerA
ActivateKeyboardLayout

kernel32

GetLocalTime
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcatA
VirtualFree
UnmapViewOfFile
TlsGetValue
Sleep
SetLastError
SetCurrentDirectoryA
CompareStringA
EnumResourceNamesA
EnumResourceTypesA
ExitProcess
FlushFileBuffers
GetCommandLineA
GetPrivateProfileStringA
GetTimeFormatA
InitializeCriticalSection
LoadResource
OpenFileMappingA
RaiseException

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE