c6dc73f6186e3d7114f742ee8b746184bff58cf77414768719ad67ad149bfc4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6dc73f6186e3d7114f742ee8b746184bff58cf77414768719ad67ad149bfc4b
Size

6KB
MD5

69d8fa87859cd18c54ed26161a0053a5
SHA1

2ec4e8154b4678645aa5900213733e29c0d1d967
SHA256

c6dc73f6186e3d7114f742ee8b746184bff58cf77414768719ad67ad149bfc4b
SHA512

48b84fe35ed614615cc363996eea4b001678d54a8bd1ff8aaa7d8dae1f60aa9908e7ac30d314cb148402c0d7c74ca677a8221bcf5ad0efd7601472f032f53cf9
SSDEEP

96:VGEETrMLH5Y99920m0si0lXo0j0ok0l0kv9TXXVd0f/SCh0B010Ztk0l030I4o91:efMC999wXdXigO4oO+giKAW0T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6dc73f6186e3d7114f742ee8b746184bff58cf77414768719ad67ad149bfc4b

Files

c6dc73f6186e3d7114f742ee8b746184bff58cf77414768719ad67ad149bfc4b
.dll windows:5 windows x86 arch:x86

a23064e36a7cee786955ca6fd65d4af8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryW
ReadFile
CreateFileW
GetProcAddress
VirtualAlloc
MoveFileExW

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1024B - Virtual size: 646B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 517B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ