c06d307da32c42c5acfd11eefb7764ec | Triage

Sharing

General

Target

c06d307da32c42c5acfd11eefb7764ec
Size

87KB
MD5

c06d307da32c42c5acfd11eefb7764ec
SHA1

8f3dcb1e7cd22de280c087771b63a653738393f1
SHA256

66339a32ee65725624b432efeb1c8480b32c263632d398e612487657a4773430
SHA512

3c0d67d5e0eac23d1511bb13ef3e934fbb28b37f3408471a74bbf6225ca168416512715cfb0de43ce8f3ea7d6e7ce7ddbe72788abce5027fa5c39bea85484d25
SSDEEP

1536:urZXPx36daZJputVXFNSFkEqTQIDT+LEyRnLfe+olsT+YEy50bM4:u5x4aZvkVAFkXQIDTdyRnjTNv50b5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c06d307da32c42c5acfd11eefb7764ec

Files

c06d307da32c42c5acfd11eefb7764ec
.dll windows:4 windows x86 arch:x86

553e99bee2ce7c8ffe3e0dd4548ede9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetProcessShutdownParameters
ResetWriteWatch
GetModuleHandleA
IsProcessorFeaturePresent
QueryPerformanceFrequency
Module32First
DeleteAtom
FindResourceW
OpenConsoleW
GetConsoleDisplayMode
SetConsoleIcon
DeleteFileA
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.text
Size: 5KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE