893a6cc717b95bdac17b29973dbf75153ebad00045ddf43cf65c31d40746ab33 | Triage

Sharing

General

Target

893a6cc717b95bdac17b29973dbf75153ebad00045ddf43cf65c31d40746ab33
Size

5KB
MD5

e0833f7bfac8c2d51517dac5ac71a7f1
SHA1

aca687066e209a3281374a431447debed3f09509
SHA256

893a6cc717b95bdac17b29973dbf75153ebad00045ddf43cf65c31d40746ab33
SHA512

243c2b36a47625dd59ade5d0111964d683106fa19de923d84f4eeac121f906ef6115a50b39b2d8fc33e116224c4c5983d19e7c8929d287208ae0286175b51bff
SSDEEP

48:SKLA9oyTnXz+ihZjuyUiIDjSmefMCY6wyH86cJCLdeYJB4EaIXNjYFks:eTnXzvupi+jSmefMkc6cJCLcYJjMt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
893a6cc717b95bdac17b29973dbf75153ebad00045ddf43cf65c31d40746ab33

Files

893a6cc717b95bdac17b29973dbf75153ebad00045ddf43cf65c31d40746ab33
.dll windows:5 windows x86 arch:x86

e97a70102cce77bfe0dc571cb46a4352

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileW
VirtualAlloc
ReadFile

user32

MessageBoxA

shell32

ShellExecuteW

msvcrt

_adjust_fdiv
free
_initterm
malloc

Exports

Exports

crys

Sections

.text
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ