168e98128db81774cbb57da67db8b2d0 | Triage

Sharing

General

Target

168e98128db81774cbb57da67db8b2d0
Size

6.6MB
MD5

168e98128db81774cbb57da67db8b2d0
SHA1

2dc74b83764a32921bb557647a3001add2597913
SHA256

d14f9e9314c69e9f20f98314669bd1d73364a6bad3333c451d6c641327a93109
SHA512

d7e9e4fcb7d5800a4c2d84a750f3323f473ded2ef127760e49fe85d0be4f831ca0f5777130f4d2fd35f5e62ff7d8dcc8beefdb5135618f189ef3595f9092d89a
SSDEEP

49152:JNeB+1YN90GGt450WBd8y3lHMUC5x2c2NOm63b5SWRmNgzLSCCr1H2V9X3EKQuWf:X1YN9yt40S3bC5x2VLOV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
168e98128db81774cbb57da67db8b2d0

Files

168e98128db81774cbb57da67db8b2d0
.dll windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

Windows.Devices.ni.pdb

Sections

.data
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 4.1MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 261KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ