0d62c2b4a6116dcbad8dd49d2766b5b97f2042f01aef32573f9be3ea4fb01f78 | Triage

Sharing

General

Target

0d62c2b4a6116dcbad8dd49d2766b5b97f2042f01aef32573f9be3ea4fb01f78
Size

2.4MB
MD5

315c19ab8a5019712cda7ed375cb6b17
SHA1

03c83541e26cb978dbb0cb1574ec6c8078a54f59
SHA256

0d62c2b4a6116dcbad8dd49d2766b5b97f2042f01aef32573f9be3ea4fb01f78
SHA512

8b8e4afd071ab18ce6f72c2bb3770651c3417dd5050b20e6814f1c0cbf683dac6950bc66daa9211223b7573a8fe75997079267575fb6bb2582e7ce9a141bb250
SSDEEP

49152:N5m8x/B4WW2YvLQF7O4tzadpjESaexNw7oRGkTBEigneACV2G++:N5mC/BqvLEB01/GJ8V2Gx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d62c2b4a6116dcbad8dd49d2766b5b97f2042f01aef32573f9be3ea4fb01f78

Files

0d62c2b4a6116dcbad8dd49d2766b5b97f2042f01aef32573f9be3ea4fb01f78
.dll windows:5 windows x86 arch:x86

86aceb3cecfb09bcda954e8de89ea60b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

SetDCPenColor

mprapi

MprConfigInterfaceEnum

user32

GetMenuContextHelpId
SetForegroundWindow

advapi32

GetServiceKeyNameA

oleaut32

GetRecordInfoFromGuids

kernel32

GetModuleHandleW
LoadLibraryExA
AreFileApisANSI
GetStringTypeA
SetPriorityClass
OutputDebugStringA

Exports

Exports

AwcdthodsHlu

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt
Size: 4KB - Virtual size: 281B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.data
Size: 396KB - Virtual size: 397KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ