a5b2d840c2d6a30ff0b542793cf1e42f1094731cf2882fa80ca889d7b7fca23cN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a5b2d840c2d6a30ff0b542793cf1e42f1094731cf2882fa80ca889d7b7fca23cN
Size

3KB
MD5

79ff68f12b136a2208d459c2e931d420
SHA1

70bdd1570a658319a774872167bb1d12a048a0d2
SHA256

a5b2d840c2d6a30ff0b542793cf1e42f1094731cf2882fa80ca889d7b7fca23c
SHA512

9c62f9c53be6ef88c0e9cf2efe650ccf97edc52129e3cb6a5b85c249119e3eaf77b53f4b16f82996494e120b1a77f628d6838e48d518dba4dd396b65ab37f5c4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5b2d840c2d6a30ff0b542793cf1e42f1094731cf2882fa80ca889d7b7fca23cN

Files

a5b2d840c2d6a30ff0b542793cf1e42f1094731cf2882fa80ca889d7b7fca23cN
.dll windows:5 windows x86 arch:x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress

Exports

Exports

?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32

Sections

.text
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 319B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ