3cf7333f35f8049975d10b2297900f2679fd5b8abc6eaa3d617d3e7173be8409 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3cf7333f35f8049975d10b2297900f2679fd5b8abc6eaa3d617d3e7173be8409
Size

120KB
MD5

bc2c68425ca1fc133970f7f47e78b9fb
SHA1

014fe17ecc0cbed5386720863994c9542d386d7c
SHA256

3cf7333f35f8049975d10b2297900f2679fd5b8abc6eaa3d617d3e7173be8409
SHA512

ce039dc9fb0cfc08215d6047dc9ba5b04bf83b79399138faaa4020020eec489ee1be19e414ab8f638e1f4f78e15895dbc2591ea94f61c0f1563dade96a176ccc
SSDEEP

1536:7syXWBYOqITc+36szN+k7ZBPeBmEA6i2PcHHB2XpnENQfaCtfd0GPh:7sLzqvr8NLPeqN2PcHHBOpnENQTtfdP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cf7333f35f8049975d10b2297900f2679fd5b8abc6eaa3d617d3e7173be8409

Files

3cf7333f35f8049975d10b2297900f2679fd5b8abc6eaa3d617d3e7173be8409
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ