Static task
static1
Behavioral task
behavioral1
Sample
b80e790ab5d67f19298bfc296e9fc14ed0372dc50d95f8d7af68c807f690cb52.dll
Resource
win7-20240611-en
General
-
Target
b80e790ab5d67f19298bfc296e9fc14ed0372dc50d95f8d7af68c807f690cb52
-
Size
120KB
-
MD5
4cd27af5319026ba2439bdb3bf78b657
-
SHA1
11bbbe354bba84f75639bba852da4753f2b36bab
-
SHA256
b80e790ab5d67f19298bfc296e9fc14ed0372dc50d95f8d7af68c807f690cb52
-
SHA512
c0a0da3ac05e1f8d3674728f875c3a76bd31b5f2cfab037b1540411473cdaad52b9e64ebf17a09323ccd88911d3a7063f96a10965fe03c79fe472221dcb902c5
-
SSDEEP
3072:T62ZHmxKILKTGhWGnmiPULowMClIFA2aUwJ/Qp/DNLwSKGa:T9GtU0nFPYMCl0A2aPm/DNLuv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b80e790ab5d67f19298bfc296e9fc14ed0372dc50d95f8d7af68c807f690cb52
Files
-
b80e790ab5d67f19298bfc296e9fc14ed0372dc50d95f8d7af68c807f690cb52.dll windows:4 windows x86 arch:x86
0f44bf2b3b0b8d5ecae5689ff1d0e90d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode
user32
wsprintfA
Sections
.text Size: 119KB - Virtual size: 118KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 376B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ