123e14f777e317c7778b4e51c1e67a63cc0a3e793344cccd09b07d7ced00cb5b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

123e14f777e317c7778b4e51c1e67a63cc0a3e793344cccd09b07d7ced00cb5b
Size

120KB
MD5

eba189c71776157859a7f74a72518653
SHA1

4e2678031d8820292bff96e518988b499cfcfacd
SHA256

123e14f777e317c7778b4e51c1e67a63cc0a3e793344cccd09b07d7ced00cb5b
SHA512

4a3551e7a8deb2e225cd7d550b9e9a8898186ef2a046773c1cdd11cbe1c811341216b9106768a3791b0f06464bb2e7d4568c5d8842c3a128efce948809a27fc0
SSDEEP

1536:nXyQw2SLZNWNElS73lY+KTRIr2eS6sS2/LUOLJgbiOUw2BbX8oSVcUiCeVTPpHav:nCQwXnWCc7CRIKiaLUeJMQw2ZXLc+zI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
123e14f777e317c7778b4e51c1e67a63cc0a3e793344cccd09b07d7ced00cb5b

Files

123e14f777e317c7778b4e51c1e67a63cc0a3e793344cccd09b07d7ced00cb5b
.dll windows:6 windows x86 arch:x86

d038997e1aa7ce985d4b3462f3056a21

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\mwork\mywin32\usbnew\classinstaller\objfre_w2k_x86\i386\DevPgCls.pdb

Imports

msvcrt

_adjust_fdiv
_amsg_exit
_initterm
free
malloc
_XcptFilter

kernel32

UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlUnwind
InterlockedCompareExchange
Sleep
InterlockedExchange
DisableThreadLibraryCalls
SetUnhandledExceptionFilter

comctl32

ord17

Exports

Exports

DevPgmClassInstaller

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE