b2976a880a0826c5fcb7d9fab9f1a264df96a0c6a51d1cc0f2e06822af42e5d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2976a880a0826c5fcb7d9fab9f1a264df96a0c6a51d1cc0f2e06822af42e5d6
Size

123KB
MD5

c94a747b3c34948b1cc9c5c9361a4c3b
SHA1

7bde3edcf220e8cf6f546882852eb261337f8ad1
SHA256

b2976a880a0826c5fcb7d9fab9f1a264df96a0c6a51d1cc0f2e06822af42e5d6
SHA512

b0c363ca3b6c10f9b9ee96a701f5cae2781fb1c156c0d19c467d0e01d783aa1cbb70a4e66d3c38f664a22f3c97188c51a6e283de2fc31612df702f2591bd4f39
SSDEEP

3072:d3HcsgkLtGvlLIC70PeeM09MChbgmxpI:d3HcesymjOBhbvpI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2976a880a0826c5fcb7d9fab9f1a264df96a0c6a51d1cc0f2e06822af42e5d6

Files

b2976a880a0826c5fcb7d9fab9f1a264df96a0c6a51d1cc0f2e06822af42e5d6
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

entry

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ