88b5bd787a4e9dc2760cd3ae44460769692e0ca6f93ff2b2be7a68833c55721fN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88b5bd787a4e9dc2760cd3ae44460769692e0ca6f93ff2b2be7a68833c55721fN
Size

120KB
MD5

03afb9a4240a050736ac6f4589d5e160
SHA1

032db5c5f7865e2b991b00c3434614c23a7e5e26
SHA256

88b5bd787a4e9dc2760cd3ae44460769692e0ca6f93ff2b2be7a68833c55721f
SHA512

e2360aa94aa946b3fd3aa92863405223a427538522b99152e120c8e3bbd5097f3a1a1a53a6791e134b6af675e479fb4aec52265c3645db9a6d64e3fb123bd54a
SSDEEP

1536:jYj/B1jckC58zwvJwcRE9uYy9OSK2E3xyJnh2a8j8BvrgW9N2Jw9D:jGp5/C5fxM9uYsOe4j8Jrv9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88b5bd787a4e9dc2760cd3ae44460769692e0ca6f93ff2b2be7a68833c55721fN

Files

88b5bd787a4e9dc2760cd3ae44460769692e0ca6f93ff2b2be7a68833c55721fN
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ