c1d9d9a6adb737bdeb0350416f552c2c | Triage

Sharing

General

Target

c1d9d9a6adb737bdeb0350416f552c2c
Size

81KB
MD5

c1d9d9a6adb737bdeb0350416f552c2c
SHA1

7b62bb8374f4fc5c523888624fb540d5ba23943b
SHA256

2cb04993733d120bf5c9d210c34b6c19294a36fdc32ee1d76219a941d9d4c5d0
SHA512

e0f6417b98b03376e13e99215914984df71ee69f2a28f1e700850f7ad98ddfbf88356708119b254e487e22968146b589dc73ac896332faab7364186488bd5138
SSDEEP

1536:SykNPm8VB1b0M+jSxO3xZdJIMufs8xXNeqSSXOg3opH3rfA/19SVv5diRzPFxn:gNu61bK1hZDIVf9eQOfrm1a5ErB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1d9d9a6adb737bdeb0350416f552c2c

Files

c1d9d9a6adb737bdeb0350416f552c2c
.dll windows:4 windows x86 arch:x86

d219448356a2cce4f87affb327b29991

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DrawIcon
DrawCaption
DialogBoxParamA
DestroyWindow
DestroyCaret
CreateIconFromResource
CreateCursor
CharUpperBuffA
CharUpperA
CharNextA

kernel32

FreeResource
lstrlenA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
VirtualFree
Sleep
SetLastError
SetCurrentDirectoryA
OpenFileMappingA
CloseHandle
CompareStringA
EnterCriticalSection
ExitProcess
ExitThread
FindResourceA
GetFileSize
GetStartupInfoA
LeaveCriticalSection
LocalAlloc
MapViewOfFile

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE