58ef3536592acc4fe95284664e89720823b8db3de7b4d0fc2a6a241e8ee127b3 | Triage

Sharing

General

Target

58ef3536592acc4fe95284664e89720823b8db3de7b4d0fc2a6a241e8ee127b3
Size

120KB
MD5

b22f64b664cd593d8caf9348b0ab2289
SHA1

8df3fa14478c2d07b1acb0a2e428f349a83c07ad
SHA256

58ef3536592acc4fe95284664e89720823b8db3de7b4d0fc2a6a241e8ee127b3
SHA512

1d24c3b4a75decaf970d7a883ea57826f0274eba93b4a506c6adb7ea5aa895d3b21268894967ccc5e773ab4e21b684cd50b2e4377509be60b0cd5e9a6a16f3b6
SSDEEP

1536:VxgYV+IcPjDuyEtTs9Rn8g0SUVghgaN/AmJeVYF7TF8jbKTZLu33X3vOf9tsrO/:8/jDuttAv8g0Dsg+/AmcVe1pMHv6OO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
58ef3536592acc4fe95284664e89720823b8db3de7b4d0fc2a6a241e8ee127b3

Files

58ef3536592acc4fe95284664e89720823b8db3de7b4d0fc2a6a241e8ee127b3
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ