b9cbefbfc9d8bfae1177efd05d1baa3d38da4258cd9ed57589b754edba3c2380 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9cbefbfc9d8bfae1177efd05d1baa3d38da4258cd9ed57589b754edba3c2380
Size

6KB
MD5

c66adf7ab7a7a409159daf6197a85d2a
SHA1

17f44f5ce803fbe7a8d6325ba8ba4279657e8f20
SHA256

b9cbefbfc9d8bfae1177efd05d1baa3d38da4258cd9ed57589b754edba3c2380
SHA512

a7681fd6791412f054f5ab6553c49af5dff97c17f8c55c046e202e22a2f72baf2de85b0dea08a8a74ce96930f1076c8f629f1c7abccb00a15a690a75082f0e41
SSDEEP

96:hy859x0P8MajgFJ8P7CrJPpnOi4L5GhP:F5oLDFJQ7CrFQV5Gh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9cbefbfc9d8bfae1177efd05d1baa3d38da4258cd9ed57589b754edba3c2380

Files

b9cbefbfc9d8bfae1177efd05d1baa3d38da4258cd9ed57589b754edba3c2380
.dll windows:5 windows x86 arch:x86

c4c9ecfc26ca516a80b8f6f5b2bdb7e6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryW
GetProcAddress
CreateFileA

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 385B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ