8792818616b22766133d39a74a106053aae113d646e3522fbb8f47e141e3f59c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8792818616b22766133d39a74a106053aae113d646e3522fbb8f47e141e3f59c
Size

120KB
MD5

f4e53603dd2533eb71a2f7eb9ded3daa
SHA1

3e5d8b274ec0ec7501eb2e3ee9115ec1ace0e335
SHA256

8792818616b22766133d39a74a106053aae113d646e3522fbb8f47e141e3f59c
SHA512

48cdce2f348b400bf2de4483fb75e3ba4b8ae1a0be4807ac92509a6065fffc7900a50b49edd6d676a81653ad1f7c91cae8ef46ecbe01cfa8318f5b4933b642d1
SSDEEP

1536:23etPXrUL0Lyw2Qtz+wbef5llOD6nmFJrdCsC+TEm04UUMFPeWccfgeGavNJVLHM:7rC0r2Q9FO/lOprdC/xxpVKcfg6FJ9s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8792818616b22766133d39a74a106053aae113d646e3522fbb8f47e141e3f59c

Files

8792818616b22766133d39a74a106053aae113d646e3522fbb8f47e141e3f59c
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ