345f80b4c1b029d91be87edd69e0d267e015a544c7b9dd672938fab3c4c5252e

General

Target

345f80b4c1b029d91be87edd69e0d267e015a544c7b9dd672938fab3c4c5252e
Size

122KB
MD5

70dd7f9eb498ff5ab02e46ad200898a2
SHA1

2db6319b527dc8efdda5b9df0e3fc7fff1953bbd
SHA256

345f80b4c1b029d91be87edd69e0d267e015a544c7b9dd672938fab3c4c5252e
SHA512

ae2a7a951e5046f6db15404ccdb28df431db17772cc496021a22a2bfcf8e447e8d86781ff13f92f3f45bcf25b104bfa6a4e10fe0af1fd2cf0dbf3827e7afe5de
SSDEEP

3072:rNLI2EGADJF4aYd+tfIartRYnDn6r8xorl:xCGGJmHwD6urJr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
345f80b4c1b029d91be87edd69e0d267e015a544c7b9dd672938fab3c4c5252e

Files

345f80b4c1b029d91be87edd69e0d267e015a544c7b9dd672938fab3c4c5252e
.dll windows:5 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Exports

Exports

publish_plugins

Sections

Size: 30KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

820ab24e53af2dbafc74d24f87e40262

Headers

DLL Characteristics

File Characteristics

Imports

user32

comctl32

kernel32

Exports

Exports

Sections

Size: 30KB - Virtual size: 84KB

Size: 6KB - Virtual size: 20KB

Size: 4KB - Virtual size: 40KB

.rsrc Size: 49KB - Virtual size: 172KB

Size: 9KB - Virtual size: 12KB

Size: 21KB - Virtual size: 21KB

.rsrc
Size: 49KB - Virtual size: 172KB