e4b758df63cc6b7fd9c4338f323e65e600e5f1bccfb1567eacb3ef086310db57 | Triage

Sharing

General

Target

e4b758df63cc6b7fd9c4338f323e65e600e5f1bccfb1567eacb3ef086310db57
Size

120KB
MD5

7c9cb78137589adc5c6b9967edb83da6
SHA1

09e343c658eecc757dbb354b67c8719da78b3b27
SHA256

e4b758df63cc6b7fd9c4338f323e65e600e5f1bccfb1567eacb3ef086310db57
SHA512

8e0acf6ffef5553a2f5717c68028900a41a122f31b8d5138c80f5f6c8dfba7efa99d6dbe61f8ea6200723da432f4d9e213abc50b2d43110d8b79f6975b1d47f2
SSDEEP

1536:uLTKC0jhQm3mwnmJVngPgXOs+XuF441T91k+7cCZj5X+QwjWxvCBgT:XC0FQNYmJVgcOrr41T9jDZd0W1OgT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e4b758df63cc6b7fd9c4338f323e65e600e5f1bccfb1567eacb3ef086310db57

Files

e4b758df63cc6b7fd9c4338f323e65e600e5f1bccfb1567eacb3ef086310db57
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ