a096c534aff23b862900ac02a940ecd7d4a4d08f2e962ba7b266f6dffa387d3d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a096c534aff23b862900ac02a940ecd7d4a4d08f2e962ba7b266f6dffa387d3d
Size

3KB
MD5

feaeb4036be228456ddc870eb0ad8659
SHA1

dff3507bceed1bb5fcaec0f89539b63b11039991
SHA256

a096c534aff23b862900ac02a940ecd7d4a4d08f2e962ba7b266f6dffa387d3d
SHA512

8771b6ed53768e765c9d023caa63d31795413efeaae444b321a1a8dbc0ca505682063072943a3a8e4ddf96e49c133854391bf02dc6016a8b9e98b35a815d41e8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a096c534aff23b862900ac02a940ecd7d4a4d08f2e962ba7b266f6dffa387d3d

Files

a096c534aff23b862900ac02a940ecd7d4a4d08f2e962ba7b266f6dffa387d3d
.dll windows:5 windows x86 arch:x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress

Exports

Exports

?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32

Sections

.text
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 319B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ