39939eacfbc20a2607064994497e3e886c90cd97b25926478434f46c95bd8ead | Triage

Resubmissions

14/05/2024, 05:38

240514-gbthwace7x 3

14/05/2024, 04:59

240514-fmptdsbf5z 3

Sharing

Copy URL Twitter E-mail

General

Target

39939eacfbc20a2607064994497e3e886c90cd97b25926478434f46c95bd8ead
Size

1.6MB
MD5

2d5cefe02cef5d14da7d609f0ccad1bc
SHA1

c419ed515b5267bb39870bdedcdd8dd8b172574c
SHA256

39939eacfbc20a2607064994497e3e886c90cd97b25926478434f46c95bd8ead
SHA512

874fa5d5fc2b4ecb38f1da6e5cb6e102d497fde2405be4a2e1695ba0ab8d8f7035eee12e7cffe80eb6bd9e4268ad8236a5e298df524d1c4c9ebdf1de04fbc8ea
SSDEEP

24576:Ys/ZW7cQG46aNCT3TzOuvgLXcPN5elkTFlXtOHpi9K9yHJMl3M16W/Q:nW7cQpJNCz/IX2NwlkTFGJis9ypMdo9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39939eacfbc20a2607064994497e3e886c90cd97b25926478434f46c95bd8ead

Files

39939eacfbc20a2607064994497e3e886c90cd97b25926478434f46c95bd8ead
.dll windows:6 windows x86 arch:x86

282c018e8f919a9928ab25034409dbc1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
GetLastError
ConvertThreadToFiber
CreateFiber
DeleteFiber
SwitchToFiber
CreateActCtxA
ActivateActCtx
CreateThread
SetCurrentDirectoryA
GetTempPathA
WaitForSingleObject
CreateFileMappingA
VirtualAlloc
MultiByteToWideChar
WideCharToMultiByte

Exports

Exports

CDm45L
GcG672
KdGYZD5
Pmo13
VisibleEntry

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 577KB - Virtual size: 577KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ