cd1d11c06d8de77b4e1f4eeb936dda4e6ffe8b0febc1ecc7abceef3f206244beN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd1d11c06d8de77b4e1f4eeb936dda4e6ffe8b0febc1ecc7abceef3f206244beN
Size

276KB
MD5

0139010754d0a39065141c16af88f730
SHA1

5e68c15d3df5388b3fb9a1565e6adbb69b21323c
SHA256

cd1d11c06d8de77b4e1f4eeb936dda4e6ffe8b0febc1ecc7abceef3f206244be
SHA512

dcb0e96fc5c3b85daac4b06b0cf15b2fff73d92270bac95a4ba947482ca5e2252ebf96455613fa8cc00fe9547c05a5532915b01c8cc950bcfc8e17a651394199
SSDEEP

6144:ZFHl9vqK0ggfkaWl5DQ5s4EKHMBV+LTsV0aqJWIa:ZFHrSKmfNWlRk8KY4LwuPJM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd1d11c06d8de77b4e1f4eeb936dda4e6ffe8b0febc1ecc7abceef3f206244beN

Files

cd1d11c06d8de77b4e1f4eeb936dda4e6ffe8b0febc1ecc7abceef3f206244beN
.dll windows:4 windows x86 arch:x86

c52e32468130e9c14f96734795e2c9d5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EndPaint
EnableScrollBar
EnableMenuItem
CreateIconFromResource
CreateCursor
CloseWindow

kernel32

LoadResource
lstrcpynA
lstrcmpiA
lstrcatA
TlsSetValue
TlsAlloc
SleepEx
EnumResourceNamesA
GetFileSize
LocalAlloc
MapViewOfFile

Exports

Exports

CreateMainProc
CreateProtectProc
DllCanUnloadNow
DllGetClassObject
PealLogoff
RealLogon
Setup

Sections

.text
Size: 1024B - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 267KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data0
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ