5b19cdb9d6bda5e6d8c98381ed388bf6d8c774d8670a4a580e7a266e1481fa91 | Triage

Sharing

General

Target

5b19cdb9d6bda5e6d8c98381ed388bf6d8c774d8670a4a580e7a266e1481fa91
Size

237KB
MD5

7644fe959b28d8c595cbcebce996d6f3
SHA1

d2187cbb235b988e2398269f27de8643dc4d0e77
SHA256

5b19cdb9d6bda5e6d8c98381ed388bf6d8c774d8670a4a580e7a266e1481fa91
SHA512

787a6d7b49b7fb0c5df0109c0c5f43e74133367cac81983ea174c7b0b8b1fa6e7faaf85b90f8c1869e3b020a12335af4b94e578eb14adc0e6d297d7eed02521f
SSDEEP

3072:0wc71wc71wc71wc71wc71wc71wc71wc1VBlzhbE:0NNNNNNNri

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b19cdb9d6bda5e6d8c98381ed388bf6d8c774d8670a4a580e7a266e1481fa91

Files

5b19cdb9d6bda5e6d8c98381ed388bf6d8c774d8670a4a580e7a266e1481fa91
.dll windows:10 windows x86 arch:x86

7b94f5506b03fe79368e2faf1a7326e7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d3d10SDKLayers.pdb

Imports

msvcrt

_unlock
_lock
_initterm
_amsg_exit
_XcptFilter
__dllonexit
malloc
free
_onexit
_except_handler4_common

kernel32

InitializeCriticalSection
RaiseException
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
Sleep
DeleteCriticalSection

ole32

CoCreateInstance

Exports

Exports

D3D10GetVersion
D3D10RegisterLayers
D3D10TranslateCreateDevice
DXGI_SDK_MESSAGE

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 770B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ