d7e6341941b8edff1342ce17f02d476df6f8bbc52bc1efac3c542d626fa7e125 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d7e6341941b8edff1342ce17f02d476df6f8bbc52bc1efac3c542d626fa7e125
Size

5KB
MD5

96cbcb02fff7c06b025d5d564def7824
SHA1

22cd94cb7b46510985c5cf5016f6734f65e38c7f
SHA256

d7e6341941b8edff1342ce17f02d476df6f8bbc52bc1efac3c542d626fa7e125
SHA512

a5c27a045c1e560a3d0514b9cdfb45b5d6bac56d6a8ddd0b8ff582945897efd7eb6ebf93714742556eeda7a7cf61b173358b76152da8c092ac14021564125c10
SSDEEP

48:SKLA9oyTnXz+ihZju0IevgAs8XUe58qP32DX6YQ7I9dCVy80XM3iFe:eTnXzvuRIsiLZ/2LGI9cA80uiFe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d7e6341941b8edff1342ce17f02d476df6f8bbc52bc1efac3c542d626fa7e125

Files

d7e6341941b8edff1342ce17f02d476df6f8bbc52bc1efac3c542d626fa7e125
.dll windows:5 windows x86 arch:x86

e97a70102cce77bfe0dc571cb46a4352

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileW
VirtualAlloc
ReadFile

user32

MessageBoxA

shell32

ShellExecuteW

msvcrt

_adjust_fdiv
free
_initterm
malloc

Exports

Exports

crys

Sections

.text
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ