71b2fd838446e6c4eac3636e15a9e5b62402f99bc2fbdae0a8d87ec2ecbce39d | Triage

Sharing

General

Target

71b2fd838446e6c4eac3636e15a9e5b62402f99bc2fbdae0a8d87ec2ecbce39d
Size

7KB
MD5

cbe531d8fa19b0d84c55340d7cb1b54b
SHA1

2b01f65e9f7022bee1c7135a685f83a899b97baf
SHA256

71b2fd838446e6c4eac3636e15a9e5b62402f99bc2fbdae0a8d87ec2ecbce39d
SHA512

c06ff43e65ef29de8ef4a6938dbd67ba941763c785be275bf2d49c0d2d5a8d5aebb312be120274487cbeebc6fc2c6b065f4eaaf308e01a9670cd3e9b65bd99ee
SSDEEP

192:unSR6bgYucRslXxlMhELlDUdlDUJIlM29COmq:uZ/WXPMhYIbYod9eq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71b2fd838446e6c4eac3636e15a9e5b62402f99bc2fbdae0a8d87ec2ecbce39d

Files

71b2fd838446e6c4eac3636e15a9e5b62402f99bc2fbdae0a8d87ec2ecbce39d
.dll windows:5 windows x86 arch:x86

33eb74cdd77dab1b168bbaa130115a9d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadFile
CreateFileW
GetProcAddress
LoadLibraryW

user32

PostMessageW

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 503B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ