rundll32
Static task
static1
Behavioral task
behavioral1
Sample
8c50e5e75ee5d11488b220fa3aa758a0N.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
8c50e5e75ee5d11488b220fa3aa758a0N.dll
Resource
win10v2004-20240802-en
General
-
Target
8c50e5e75ee5d11488b220fa3aa758a0N
-
Size
7KB
-
MD5
8c50e5e75ee5d11488b220fa3aa758a0
-
SHA1
4dfc4ae3ebc7b30ae2cf7888c9144fdfb72969f3
-
SHA256
91e91bca20a49a234146887e6df540a6d8b134fdfc7816e3da2732fc307e899d
-
SHA512
8c5eb45a118eeddc83ebddad17b720d07dec7098116fc184295c8fe10a223ea4b4f80043fa9a867d34b2f48877d27e962b1819bb8f081403ef390b53041b6333
-
SSDEEP
96:DixZjmjtjd8jPjcZGR5TIub7t/w4mNCNH6VN6d6c9JM8crHIq7Zws/NN:unSR6bgY7bBomH7Eck8croq7Zt/
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8c50e5e75ee5d11488b220fa3aa758a0N
Files
-
8c50e5e75ee5d11488b220fa3aa758a0N.dll windows:5 windows x86 arch:x86
33eb74cdd77dab1b168bbaa130115a9d
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
ReadFile
CreateFileW
GetProcAddress
LoadLibraryW
user32
PostMessageW
msvcrt
free
_initterm
malloc
_adjust_fdiv
Exports
Exports
Sections
.text Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 503B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 88B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 136B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ