a0d15a66f91957a4869667ddffa5d4dd | Triage

Sharing

General

Target

a0d15a66f91957a4869667ddffa5d4dd
Size

762KB
MD5

a0d15a66f91957a4869667ddffa5d4dd
SHA1

b4f4e3d8492daa107543b735178483297f26cd24
SHA256

5d8609032acbf21f3c976e104c9ccfe68cd42c5b1ae2ac8aea19523ffd7aecc1
SHA512

d31c85a1e197a74cafeec5f4776cb25b5c8db5d7895a3f7e7184fdb986b8706991222d77ac452266ad1403777f360ee5e0ad93448acaf854b277d94fb0634e24
SSDEEP

12288:QzedJsTzxMEG0Xj2//zPcsL8iobbn8BBwhw1v1sl0pGo7uo3IjBze6g7cjUS0VD:Qibsx/RKTPRZoewo1sleGcIj9e67JW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a0d15a66f91957a4869667ddffa5d4dd

Files

a0d15a66f91957a4869667ddffa5d4dd
.dll windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 87KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 780KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

izbokahp
Size: 612KB - Virtual size: 616KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vlvjhdmr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE