460f978a27fedccc53114797eecc20c531239a999d3220cd4cbc3e78e221c318N | Triage

Sharing

General

Target

460f978a27fedccc53114797eecc20c531239a999d3220cd4cbc3e78e221c318N
Size

120KB
MD5

9ecab5f75f9ef4d56bb114bba718ffe0
SHA1

b79c03aff74c46b0f8982f138e3bc65ba53df3b8
SHA256

460f978a27fedccc53114797eecc20c531239a999d3220cd4cbc3e78e221c318
SHA512

d4a4578706dd586877c69b4f1a558f19c765b34cd7e4f9274f1aab9be33b0cbbdd79ea6363236698c254ea052eea4b6c69c56f5efbd30daef7bfad24402a91f3
SSDEEP

1536:CCmiZmT6lONOhc84N/dLnBD9NFuz1tOJUfS/FHIGVvsHoZAFMdNS:CRmD4N/JnBDfFNJUWW8GeNS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
460f978a27fedccc53114797eecc20c531239a999d3220cd4cbc3e78e221c318N

Files

460f978a27fedccc53114797eecc20c531239a999d3220cd4cbc3e78e221c318N
.dll windows:4 windows x86 arch:x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ