c5d1de206445f508c1af5f213e46b915b536e4b36ef917c4e826a982dd47c312

General

Target

c5d1de206445f508c1af5f213e46b915b536e4b36ef917c4e826a982dd47c312
Size

1.3MB
MD5

acbbc6fea0dbbe7cba511b450cc2b758
SHA1

94f342f9219cee4f2b91b54809de92d5bb00e93e
SHA256

c5d1de206445f508c1af5f213e46b915b536e4b36ef917c4e826a982dd47c312
SHA512

d274ce365f83b4a7c611dc1a0d719e4d36f321392d358e29b456354fd11ad1c028b1c21fcb809b8a8291d2fb3c0ba21e34efaf504abb387a32cfeddf282cddfc
SSDEEP

24576:SH3eMVn3OHfPDeDN5rbUFNP+P3v0yfDgNG+dMJlmhxN3zM+1QeKw7e8PAH35e+wU:RG3OHXDePrbUSv5zrmh33NBYX5Ibw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c5d1de206445f508c1af5f213e46b915b536e4b36ef917c4e826a982dd47c312

Files

c5d1de206445f508c1af5f213e46b915b536e4b36ef917c4e826a982dd47c312
.dll windows:5 windows x86 arch:x86

86bf2dc5263991d552b493d377107c94

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LocalFree
LocalAlloc
SetPriorityClass
GetCurrentProcess
SetErrorMode
GetProcAddress
LoadLibraryA
GetModuleHandleA
VirtualFree
VirtualAlloc
GetLastError
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
HeapReAlloc
GetCurrentThreadId
DecodePointer
GetCommandLineA
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
RaiseException
IsProcessorFeaturePresent
HeapCreate
HeapDestroy
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
LCMapStringW
MultiByteToWideChar
GetStringTypeW
LeaveCriticalSection
EnterCriticalSection
LoadLibraryW
HeapSize
RtlUnwind

Exports

Exports

J5f6O31iM
Uh5QU3u175
_DllMain@12
p2No0pm
wnE7T24ejv

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 231KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86bf2dc5263991d552b493d377107c94

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 231KB - Virtual size: 231KB

.data Size: 4KB - Virtual size: 7KB

.reloc Size: 11KB - Virtual size: 10KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 231KB - Virtual size: 231KB

.data
Size: 4KB - Virtual size: 7KB

.reloc
Size: 11KB - Virtual size: 10KB