86ed8b987b5230c8add5d7fb8fb7a8236c2df70a30e93baccf32f335ff5d5075 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86ed8b987b5230c8add5d7fb8fb7a8236c2df70a30e93baccf32f335ff5d5075
Size

2.4MB
MD5

3abf3d11f17c32debe895977a7550a62
SHA1

dc4ba23efad6edf01994495310451db219767765
SHA256

86ed8b987b5230c8add5d7fb8fb7a8236c2df70a30e93baccf32f335ff5d5075
SHA512

01a084e6cbf8836b1fb350979b43ef71961ccf6ad8582e711141ccd29142c4a71736847365c490469a6b0843c65293062f0d39625725b5b9da819c02c3008446
SSDEEP

49152:DlAdzAoOkbDexunB27502MyRQQ+7Zx/PYvKRxP69jjkX:DlAFAoOkbDe8nGKaGlTPYvGxPEjjk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86ed8b987b5230c8add5d7fb8fb7a8236c2df70a30e93baccf32f335ff5d5075

Files

86ed8b987b5230c8add5d7fb8fb7a8236c2df70a30e93baccf32f335ff5d5075
.dll windows:5 windows x86 arch:x86

e0aa0cdbe23b0949df2a7f5e1a99759a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

.uyrGpyAY1R3sCch1*yt-@CGtiZtkPZ

Imports

kernel32

LoadLibraryW
GetSystemTimeAsFileTime
GetFileSize
GetModuleFileNameA

netapi32

NetShareGetInfo

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 304KB - Virtual size: 304KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 692KB - Virtual size: 690KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ