344caab4d42ab3e4a7430e5b6d6dd560b277dfd07550ff36d5ed7e66a512af16 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

344caab4d42ab3e4a7430e5b6d6dd560b277dfd07550ff36d5ed7e66a512af16
Size

236KB
MD5

61f9eb9cf1a2d29a2a6b11ff45b14688
SHA1

6c64f4a073bc57d696b35c67f78134b6f111ad28
SHA256

344caab4d42ab3e4a7430e5b6d6dd560b277dfd07550ff36d5ed7e66a512af16
SHA512

0221dd607fb802803cb3d2c44d6773caf69e134dd1ca6221e5da206b34eaa256b192c8894a58aa3a826f509d25a3910b87a6863cf21e4e3840796528ec39c62d
SSDEEP

3072:GVBCLQ3Vr5QcJDYwXdwOFQl2xHceCA/P0pz6/u/O+Dw+cJ4tP80jD4QyV2D9iy00:+GO20B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
344caab4d42ab3e4a7430e5b6d6dd560b277dfd07550ff36d5ed7e66a512af16

Files

344caab4d42ab3e4a7430e5b6d6dd560b277dfd07550ff36d5ed7e66a512af16
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 160B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ