bc9f4dcc80d834df2201747b7ecfce65b270acce1027482beca9d5e841b71ec7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc9f4dcc80d834df2201747b7ecfce65b270acce1027482beca9d5e841b71ec7
Size

5KB
MD5

9555cd4a8a757d79916f3c1271b1de42
SHA1

1055782063a2e3e7042d2250edd25a51547d0e83
SHA256

bc9f4dcc80d834df2201747b7ecfce65b270acce1027482beca9d5e841b71ec7
SHA512

adaac22ddb28cae92d7d7ae85a631652e0ced9da5491217be2de43e11972a48978583682d61b81cc58c3350d1e8948d62ef5790495375b6ab227fb10dce174be
SSDEEP

96:nEY2RrF1eqwi4jq5WztTsOd23Mf3AovB5lcWZx2Qq:EHRh1eppy40av

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc9f4dcc80d834df2201747b7ecfce65b270acce1027482beca9d5e841b71ec7

Files

bc9f4dcc80d834df2201747b7ecfce65b270acce1027482beca9d5e841b71ec7
.dll windows:5 windows x86 arch:x86

76812f441b0ed9d3cc0748af25d689a3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadFile
CreateFileW
GetProcAddress
VirtualAlloc
LoadLibraryW

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 512B - Virtual size: 510B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 423B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ