c4c50b92c9d871e493daae2f7329edef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4c50b92c9d871e493daae2f7329edef
Size

136KB
MD5

c4c50b92c9d871e493daae2f7329edef
SHA1

adc1c5309b39f4cb0d8c873271921ffe89bc4bdf
SHA256

6219e3c9dec737ec6bc6b780cd23c05369c50cd26155664865ba513f8acb5f11
SHA512

f0b58b98a789c27add9f315cdace8d7d8bc8a643774bbd60de9b787c7a9fdfbacc04a51a7360131864845e7e6a0c9b2f9f8e649fc6e8c56d9a7f07e8f812ed79
SSDEEP

3072:tk8QEn2jHr3cnPJgk2gDRrFgpvnPaM24n:t7QkAD34RupaMF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c4c50b92c9d871e493daae2f7329edef

Files

c4c50b92c9d871e493daae2f7329edef
.dll windows:4 windows x86 arch:x86

d71ff74ccfe699004afc74c243196b27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

fdsksd.pdb

Imports

advapi32

AllocateAndInitializeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetFileSecurityA

version

GetFileVersionInfoA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 518B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ