996eb520c430d4e6f0b76728b7162f686abc6607b7df4c72aae29d74da9f9d58 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

996eb520c430d4e6f0b76728b7162f686abc6607b7df4c72aae29d74da9f9d58
Size

2.0MB
MD5

4d3dde3c8913ba485edd5b6cbf8edff4
SHA1

93543ee72ce40648c39fe46e01f511937937a7ec
SHA256

996eb520c430d4e6f0b76728b7162f686abc6607b7df4c72aae29d74da9f9d58
SHA512

ef5e354b3b412c8f65663a82b31f01e915174dc46a439aa4107532559c0a4a4621d7901dcf7c81dcafc59d2bae2a0ea1f79f5b7e5e3b4b7f1a399d4b5ab56e16
SSDEEP

49152:rcq/mhGE8cRktC2Mpqnl9eOc1QvxrJBqFXe30WrzzlK34oyoa1RZu7kO:rT/mhGENRZ28qnl9eOkyo3Wrc4ohWuoO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
996eb520c430d4e6f0b76728b7162f686abc6607b7df4c72aae29d74da9f9d58

Files

996eb520c430d4e6f0b76728b7162f686abc6607b7df4c72aae29d74da9f9d58
.dll windows:5 windows x86 arch:x86

b877b3feb2a4a53fddd83f30e984edb7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

oleaut32

GetRecordInfoFromGuids

gdi32

SetDCPenColor

user32

SetMessageExtraInfo
SetForegroundWindow

kernel32

OutputDebugStringA
GetModuleHandleW
SetPriorityClass
AreFileApisANSI
GetStringTypeA
GetModuleHandleA

mprapi

MprConfigTransportCreate

Exports

Exports

AwcdthodsHlu

Sections

.text
Size: 1004KB - Virtual size: 1000KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.CRT
Size: 4KB - Virtual size: 44B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 892KB - Virtual size: 890KB

IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ