a4d795b2f2721a5738eb62af12004d2e125790d3616c09d6e5f9e582decbad2c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4d795b2f2721a5738eb62af12004d2e125790d3616c09d6e5f9e582decbad2c
Size

90KB
MD5

afd3cdf5e669ee1a94be2a60e171bc4c
SHA1

de8fad491a3ef87b13e8dced80a7322fa4b43f4c
SHA256

a4d795b2f2721a5738eb62af12004d2e125790d3616c09d6e5f9e582decbad2c
SHA512

a211cd94e3039355ee42f1e8a04be946141bdbc6f17f73e3aee24fc331e1608fd5fa2a42f6108af2340a04d970817d7b6ebc5eabd16e596fe7809fa69a9207e0
SSDEEP

768:9oJ0xFn248CicLltRmFQoGIsv/ScXvLSWYp/0nrc+XPFeS6tg3OcqljF97mzvs6:9uyFv4y6PRMgKeS6tz5jD7mzv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4d795b2f2721a5738eb62af12004d2e125790d3616c09d6e5f9e582decbad2c

Files

a4d795b2f2721a5738eb62af12004d2e125790d3616c09d6e5f9e582decbad2c
.dll windows:4 windows x86 arch:x86

b37b6e9058695ac54f62b54aae206e14

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

carclw60

CARC__EnterInstance
CARC__ExitInstance
GOL$C2
GOL$25
GOL$58
GOL$FILLDATA
GOL$A2
GOL$85
GOL$52
GOL$S2
GOL$D2
GOL$M5
GOL$COPYDATA
GOL$A8
CARC__StopRun
GOL$55
GOL$VN_ASCII_SIGN_TABLE
GOL$D5
GOL$S8
GOL$C8
GOL$M2
GOL$R5
CARC__FractionalPower
_CARC__LibraryMain@12

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RCLID_TE
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 580B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RCLEP_DA
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ