2b9d7213fe7c3f99630d8ec2bef7f879825f22f310a78383e4c5df6139c80f6f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b9d7213fe7c3f99630d8ec2bef7f879825f22f310a78383e4c5df6139c80f6f
Size

6KB
MD5

a500e39d0365481af7c6fdb9143a3ff9
SHA1

630efa8adfd62a822f5eaa2228dc9ee401e6abbe
SHA256

2b9d7213fe7c3f99630d8ec2bef7f879825f22f310a78383e4c5df6139c80f6f
SHA512

568aea9a8b54f9f78faf01452ca89f6e342b592300a786497a705e4595984cbf5c7f7168b7f19b1e1cc4b26f1605079c0c1ffcf931715f91df3b0538ff55f989
SSDEEP

96:z0QR9B6BvAwbSDf6UCXgoG24MKoG2eIie:JR94/bSDf6U+G2fG2eIie

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b9d7213fe7c3f99630d8ec2bef7f879825f22f310a78383e4c5df6139c80f6f

Files

2b9d7213fe7c3f99630d8ec2bef7f879825f22f310a78383e4c5df6139c80f6f
.dll windows:5 windows x86 arch:x86

01c41bde2e28b577655077042a01522f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 359B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ