a1a29c42d768ab752165f04110f87749 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a1a29c42d768ab752165f04110f87749
Size

20KB
MD5

a1a29c42d768ab752165f04110f87749
SHA1

0fe31f0fcac0b077e98b9cb3dc742d8e73401c2a
SHA256

16feda1ca1864d86a29c6c7b14a5ad48011c50936ab0a660af347639ed7df14f
SHA512

d0a42cc85200d9e821519853d409f1d5d39c04e058feeb3f69717fb00f9e26c7c47064f76f823aef16b9d1d8ee2f8639a69df256a2feebc3b3d75d393a0b8370
SSDEEP

384:WlXlSMP6OEFnCqGJYrQiE36J+Q3IWU/xMI8vG37Lrl7xvaEoDr9VnnEsXfc:YlSMPfEFnCVSgoLblvYXJlaj/9Vl0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a1a29c42d768ab752165f04110f87749

Files

a1a29c42d768ab752165f04110f87749
.dll windows:5 windows x86 arch:x86

7632b18a88b6df43ae18e3614ca026bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLastError
Sleep
lstrcmpiA
lstrlenA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalFree
DeleteFileA
FreeLibrary
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
lstrcatA
CreateThread

Exports

Exports

Load2Graphic
StartVideo

Sections

.text
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ