c826e7ec34dd5c8cd73bba040c53f1c4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c826e7ec34dd5c8cd73bba040c53f1c4
Size

80KB
MD5

c826e7ec34dd5c8cd73bba040c53f1c4
SHA1

9c0284bc2fe09241f3c6ea9e5d10027ec3c64e1a
SHA256

6a98c2a0ca1434e67826a486c4a4c0362853e7ab14858c606824c76a8b374486
SHA512

83c5c08cffcb27aff691f15056f8c62da519684f0729ef9c12162b94b9ad57731aefbc47036d82fec2ce9e485781f7b8eb46182b4f4c81a3ea8471c07fc2ec11
SSDEEP

1536:xcf2w+dyMUwt+vpLGHRsmzGFaMNDxF8e3BYZLl9zdOG5wWPhOF3:2h+g0t+gbtMNL8MBYZBZdOG5w3F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c826e7ec34dd5c8cd73bba040c53f1c4

Files

c826e7ec34dd5c8cd73bba040c53f1c4
.dll windows:4 windows x86 arch:x86

b9484b3a69002a65c20dbee85fc14a2d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFileAttributesA
GetSystemPowerStatus
FormatMessageA
GetCurrentThreadId
GetCommandLineA
RegisterWaitForSingleObject
QueryPerformanceFrequency
GetProcAddress
LoadLibraryA

ole32

OleCreateLinkToFile
CoReleaseMarshalData
OleRegGetMiscStatus

user32

LockWindowUpdate
MessageBoxW
CharLowerA
EndPaint
ShowWindowAsync
IsIconic
DrawAnimatedRects
GetWindow
GetDlgCtrlID
SetMenuDefaultItem

shlwapi

PathAppendA
PathFileExistsA

advapi32

QueryServiceLockStatusA
RegEnumValueA
SetTokenInformation

gdi32

PolyPolyline
StartPage
CreateICA
CreateBitmapIndirect
SetMapperFlags
CreateICW
Pie
EnumFontFamiliesA

Exports

Exports

CPlApplet

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ