ccab47222540ba96ac062c284b8ca68f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ccab47222540ba96ac062c284b8ca68f
Size

120KB
MD5

ccab47222540ba96ac062c284b8ca68f
SHA1

8da7436fe2534c4380dfd568c824f133747cb154
SHA256

82dd93b22beabbcb9b16b0c1a40d63cb93c8e405446945f019e0fed6894a4ffe
SHA512

ed6b7d1328c4a28c64734b9934f62d754869c4bab179447758a80baaf1a5dbeca180b69254a01ba74cdd6394327792b0e8387db129cd6a4dcb38b4d4a92d4970
SSDEEP

3072:YEg17eXRoV4urT2h6hFSUHfkaCSQVAuoATzioCoZH:gK6VnLSU8aYVoAXioRV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccab47222540ba96ac062c284b8ca68f

Files

ccab47222540ba96ac062c284b8ca68f
.dll windows:4 windows x86 arch:x86

d71ff74ccfe699004afc74c243196b27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

fdsksd.pdb

Imports

advapi32

AllocateAndInitializeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetFileSecurityA

version

GetFileVersionInfoA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 566B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 478B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ