b322a517fbfed01aeeadf4dcc0878372e8eb90a74489a54f3d65850b632504f8N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b322a517fbfed01aeeadf4dcc0878372e8eb90a74489a54f3d65850b632504f8N
Size

536KB
MD5

00f4d36c086e7dc141409ee14f988680
SHA1

16b981cf59004efcc1c58c879b82349c4f11c71e
SHA256

b322a517fbfed01aeeadf4dcc0878372e8eb90a74489a54f3d65850b632504f8
SHA512

59f78a31c03ebf66665f4b54a5d39f31cff9c260ed7b1436de8d37141ba7f4eb92e82eeae8193b250b0cccc8d2d6273fb6a51e859c9e7dcab2830789c43f13a4
SSDEEP

3072:b4Z91ukmHdOMJHJIEhbsaENr2ARENRC12SSRbxIXKWH3phNLu6hxhmoy5F4FfH5C:b4Z91abw9ENg12SIb749mBB49MaH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b322a517fbfed01aeeadf4dcc0878372e8eb90a74489a54f3d65850b632504f8N

Files

b322a517fbfed01aeeadf4dcc0878372e8eb90a74489a54f3d65850b632504f8N
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

PresentationFramework.Luna.pdb

Sections

.extrel
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbgmap
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.il
Size: 348KB - Virtual size: 347KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ