93c2bf977aaa8645271f791b1695013df0155f435e0efddda08734593ef43075 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93c2bf977aaa8645271f791b1695013df0155f435e0efddda08734593ef43075
Size

3.2MB
MD5

1d34bea9a5015c879a79963d6e133959
SHA1

b77995465abf9a7d7c9af7d1c5fd5bab1588ab68
SHA256

93c2bf977aaa8645271f791b1695013df0155f435e0efddda08734593ef43075
SHA512

f471447621a2daebb4a56ec7738ce5127b92825c68605d2f49f32e62caf00bfd59d748966d87eb8fb8f0484b4a8d3930039736df36c29304f9865dcd483bee9e
SSDEEP

49152:q7ls32ZolHrKDzVHBv2E/rmZ6X1jDViQOmnUfUqWdgsDBI9raMLbqWe:as32ZolHuDjrJ1lLLUfU13ixaMHL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93c2bf977aaa8645271f791b1695013df0155f435e0efddda08734593ef43075

Files

93c2bf977aaa8645271f791b1695013df0155f435e0efddda08734593ef43075
.dll windows:5 windows x86 arch:x86

b680bc0043242ee6be4a0f3088163214

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

CreateProcessAsUserW

kernel32

GetModuleHandleA
AreFileApisANSI
SetPriorityClass
GetModuleHandleW
OutputDebugStringA
GetStringTypeA

gdi32

SetDCPenColor

user32

SetForegroundWindow
SetCaretBlinkTime

oleaut32

GetRecordInfoFromGuids

mprapi

MprConfigInterfaceCreate

Exports

Exports

AwcdthodsHlu

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt
Size: 4KB - Virtual size: 273B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.data
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ