49947a1c40e6805bbd0c234c4d748958a0592c0b6a733f8197448be8421aa734 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49947a1c40e6805bbd0c234c4d748958a0592c0b6a733f8197448be8421aa734
Size

92KB
MD5

68385f48399cf761d4015786c7def944
SHA1

85605a1296d6d9b5589047474a1536d7635523e0
SHA256

49947a1c40e6805bbd0c234c4d748958a0592c0b6a733f8197448be8421aa734
SHA512

592fb2f196c9e0e3ec56b7d9ae4d08b3f0c458aaf0e413cd9aaabb6882f6715830a4ea7b5ca9adb93def50ca39a92bee87d97c374ac5c1639d6103f61a8e68cb
SSDEEP

1536:Bnibxb9Al9KuMF7aSFYdvug0/Ym1taMdajw2/k1qwnibf5x8kOdioImTJkCZw+E8:c917+tTwnibf5x/W5ImvZTEP8JqMpLLn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49947a1c40e6805bbd0c234c4d748958a0592c0b6a733f8197448be8421aa734

Files

49947a1c40e6805bbd0c234c4d748958a0592c0b6a733f8197448be8421aa734
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 628KB - Virtual size: 627KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ