16b743fb21b7ae7416c44e313cae991311fc3549373f5a28b3c73ecc78536443 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16b743fb21b7ae7416c44e313cae991311fc3549373f5a28b3c73ecc78536443
Size

102KB
MD5

d89f3dacd1bcc8a60442f82f40e65132
SHA1

f5660fb994190054d36dc247a69f3621a61f5ca5
SHA256

16b743fb21b7ae7416c44e313cae991311fc3549373f5a28b3c73ecc78536443
SHA512

24201b472cf32c867acfaea9e2d2cc71b158f96a2af79ee163f1c3fde4965c05acad32bf2fe9e6f411a22d3ce5692670b319d4bf846b4ba8d6f724dc3ccc48e8
SSDEEP

3072:BaQNhVTFNpJH1z1NTXKw+VVTg0J0XuXfMfv09b2wqcn91Z2qe9Y9m0p37POOD1j/:BFm1Z2qI2fj/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16b743fb21b7ae7416c44e313cae991311fc3549373f5a28b3c73ecc78536443

Files

16b743fb21b7ae7416c44e313cae991311fc3549373f5a28b3c73ecc78536443
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

G:\Jenkins_Home\jobs\BuildDriverWithParameter\workspace\Windows\Core\Release\Resources\042c\ES2UIRes.pdb

Sections

.rdata
Size: 512B - Virtual size: 157B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ