aa96906d9ce8f9747ca166459d8b5084 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa96906d9ce8f9747ca166459d8b5084
Size

88KB
MD5

aa96906d9ce8f9747ca166459d8b5084
SHA1

86a91e71d8f48aaa10454fcf4dde3d2a29f3947d
SHA256

c1ab82d09c6f2990dc5baf5e289fea96841af028a7bdf3a301d0833de91a7016
SHA512

2cf03ad98736f6999a112372cdc6c1e218b9ea5c2bfbfb0801747dafc11ed0771b7f74a6e43de4f3ed4ed4b42bdd2156001fba7c623c6cd4ecd92a0a1faa31ec
SSDEEP

1536:5SDKtjBQBYthBugqho9zaQHyVBtrRVmI6dQpyz50+f6bb3bg409ec1O:GKtj6fJCpHyV/WPYyra3sq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa96906d9ce8f9747ca166459d8b5084

Files

aa96906d9ce8f9747ca166459d8b5084
.dll windows:4 windows x86 arch:x86

852fb79cce634a66f36056d0f40b7c97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DialogBoxParamA
DestroyCursor
DeleteMenu
CreatePopupMenu
CreateIcon
CreateDialogIndirectParamA
CreateCursor
CopyRect
CopyImage
CharPrevA
CharLowerA
ChangeMenuA
ActivateKeyboardLayout

kernel32

EnumResourceLanguagesW
lstrlenA
lstrcatA
WriteFile
VirtualFree
TlsSetValue
TlsFree
TlsAlloc
RtlUnwind
OpenFileMappingA
LeaveCriticalSection
GetLastError
FindResourceA
ExitProcess
CloseHandle
EnumResourceTypesA

Sections

.text
Size: 16KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ