rundll32
Static task
static1
Behavioral task
behavioral1
Sample
1f3a8d1b3e7625d24d3114a8851501a3e475dd2f0d22cabb7df9ba0b7f774474.dll
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
1f3a8d1b3e7625d24d3114a8851501a3e475dd2f0d22cabb7df9ba0b7f774474.dll
Resource
win10v2004-20240412-en
General
-
Target
1f3a8d1b3e7625d24d3114a8851501a3e475dd2f0d22cabb7df9ba0b7f774474
-
Size
5KB
-
MD5
c5d30f5d272271ba902ab7e43633e6cc
-
SHA1
c0cb2a04fbba0d4d34458b452428455c5fd2cdd5
-
SHA256
1f3a8d1b3e7625d24d3114a8851501a3e475dd2f0d22cabb7df9ba0b7f774474
-
SHA512
7a6c2a9fe233a435a12b285e19483eaaf353d571e092d7509e63820b77ad594d0d029e820d800ca4d0608cd40e50d13754565aaec1c9ce0e81095fb646446a7e
-
SSDEEP
96:hy859x0P8MaFx9rNLV/dKA9ClxYgMDAADoADsD+WADYV0f:F5oLax3V/dR9C417joq8V0f
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1f3a8d1b3e7625d24d3114a8851501a3e475dd2f0d22cabb7df9ba0b7f774474
Files
-
1f3a8d1b3e7625d24d3114a8851501a3e475dd2f0d22cabb7df9ba0b7f774474.dll windows:5 windows x86 arch:x86
c4c9ecfc26ca516a80b8f6f5b2bdb7e6
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
LoadLibraryW
GetProcAddress
CreateFileA
msvcrt
free
_initterm
malloc
_adjust_fdiv
Exports
Exports
Sections
.text Size: 1024B - Virtual size: 1020B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 385B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 124B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 136B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ