98d3e70cc7fd824b451208c39002af2e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98d3e70cc7fd824b451208c39002af2e
Size

14KB
MD5

98d3e70cc7fd824b451208c39002af2e
SHA1

fc4ae70a82bb67f22109b591081eec6e74b94437
SHA256

c3072c4f95a33e121a7c257fda571fa11e4eaa5dc1d3a5bf7a71bcc500085e4f
SHA512

fb527dd7f8ffa01fbd18e9c5e3a5aab5eef0f1d3486832c56fbbef5e7fe3c6a4c01a8c7bf44557f047ec4daca85d556d6735b5a759dae7e51e0eec7a2256af29
SSDEEP

192:PvPUlbIyQV/herMKO1mM2kcQiPbLOG7oBxfAXaPCI7JYoRvNhDIgytWqF6:8yyQxKL3kcQMO+g5uiRvNWlcqF6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98d3e70cc7fd824b451208c39002af2e

Files

98d3e70cc7fd824b451208c39002af2e
.dll windows:4 windows x86 arch:x86

a0b24be07f21ff53ac8593298bc2ed17

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapFree
GetModuleHandleA
LocalHandle
InitializeCriticalSection
CreateMutexA
SetProcessWorkingSetSize
EnterCriticalSection
CloseHandle
FreeResource
GetEnvironmentStringsA
GetEnvironmentVariableA
DuplicateHandle
SetLastError
CreateMutexW
InterlockedExchange
HeapCompact
SignalObjectAndWait
CancelWaitableTimer

user32

BringWindowToTop
SetFocus
DefDlgProcA
DrawTextA
LoadBitmapA
InvalidateRect
CascadeWindows
SetLastErrorEx
DialogBoxParamA

gdi32

BitBlt
CreateDCW
Polygon
GdiConvertBrush
SetTextColor
GetTextColor

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 858B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ