b6f5236fcef323cc31c3297a625a66ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6f5236fcef323cc31c3297a625a66ee
Size

102KB
MD5

b6f5236fcef323cc31c3297a625a66ee
SHA1

6843de8b84aa0c7c7736252acc54e914c241b3bb
SHA256

132445072af159a49f58fcdd320003a1b26b12b9d28e6545c878efca6c883670
SHA512

1f4d6467c56c8d8a48b8189d66dd07a234c9492176956a17fc38834cbacdfd2b7d778bfe955968bf0417d75a511ab938e0a278dbe77b9f7a77858e9cd500672e
SSDEEP

1536:IQ/rrAKpYehS+I6RrHPvvUZ997BuXLgDRdc8TAkqTacB0g9TTg0OaCJrSVs3NVMw:IcrwSLP3UL97UXLQRO7koV3VWND

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6f5236fcef323cc31c3297a625a66ee

Files

b6f5236fcef323cc31c3297a625a66ee
.dll windows:4 windows x86 arch:x86

1edfa5159e46ed687969f8389ce55eaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileSize
RtlUnwind
TlsGetValue
WriteFile
lstrcpyA
ExitProcess

Sections

.text
Size: 26KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ