d6a6575eca6d66f2a8b016fa92c09bdb919bebbeac29f9969a4959e5289463abN | Triage

Sharing

General

Target

d6a6575eca6d66f2a8b016fa92c09bdb919bebbeac29f9969a4959e5289463abN
Size

5KB
MD5

d8cfd7ccd157710d2f36e4a3bdd3c0d0
SHA1

ff3633962cc28d666e60451ca24c7873f76d60d5
SHA256

d6a6575eca6d66f2a8b016fa92c09bdb919bebbeac29f9969a4959e5289463ab
SHA512

44420d178a60cc20f5b9aa80e0052ec5f804faa01aa69463d00866500175d8f0ea19cca53de1840e2d275f4f3fdd3a2119a0165c0622200b2c1e0c242a63434d
SSDEEP

48:SWkO0IoyTnXz+ihZjokiZ3lZG4SibgdYByaZgDiPnwtZBBTb6LVh:ZJTnXzvokCSicdlgfPwtZBBTb6LVh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6a6575eca6d66f2a8b016fa92c09bdb919bebbeac29f9969a4959e5289463abN

Files

d6a6575eca6d66f2a8b016fa92c09bdb919bebbeac29f9969a4959e5289463abN
.dll windows:5 windows x86 arch:x86

e97a70102cce77bfe0dc571cb46a4352

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileW
VirtualAlloc
ReadFile

user32

MessageBoxA

shell32

ShellExecuteW

msvcrt

_adjust_fdiv
free
_initterm
malloc

Exports

Exports

crys

Sections

.text
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 482B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ