1088cf4d3350746eaa602fc4e3313c450fc17e43b8d136c980c594e7e1926be0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1088cf4d3350746eaa602fc4e3313c450fc17e43b8d136c980c594e7e1926be0
Size

120KB
MD5

920c7b723421e178e8e00b27cd85c2e7
SHA1

04c18b64390046c8d139d5c7d199ef63325307a0
SHA256

1088cf4d3350746eaa602fc4e3313c450fc17e43b8d136c980c594e7e1926be0
SHA512

b0910c243255046f4ffccf0d9cf421ae89e9c1a838801ca8caf1178355418029abdca5ee826145f512c0df5d6a15fd05d2f71c68fdfd7bb38e9072edecf94dff
SSDEEP

1536:iSphobFka40mCuI06VkjI1LKsB3gKXUnNEP5rOm5ZxVDvdlSe4CltnxvcXV6g0Q+:AbFDZN1ijI1LKsBgHSx6m/jaSltx0T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1088cf4d3350746eaa602fc4e3313c450fc17e43b8d136c980c594e7e1926be0

Files

1088cf4d3350746eaa602fc4e3313c450fc17e43b8d136c980c594e7e1926be0
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ