2c536f6f995c5b78701e73664a23689efc4a6d5bc28ed99ae5f0b70b7c6ed36bN | Triage

Sharing

General

Target

2c536f6f995c5b78701e73664a23689efc4a6d5bc28ed99ae5f0b70b7c6ed36bN
Size

3KB
MD5

0d48380f0e2fff53d56d380913f2cb00
SHA1

b8a8331a616fb72f9e9589b69301331b8cfa8c21
SHA256

2c536f6f995c5b78701e73664a23689efc4a6d5bc28ed99ae5f0b70b7c6ed36b
SHA512

6412c7cc9f6f42921aa0423212daf827a4982b8814c9ceb175cdc3b51ee08f71144be25a11cd31a6991e1160b828a5d3e3f031a291cdf7fac16e193783dc21d9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c536f6f995c5b78701e73664a23689efc4a6d5bc28ed99ae5f0b70b7c6ed36bN

Files

2c536f6f995c5b78701e73664a23689efc4a6d5bc28ed99ae5f0b70b7c6ed36bN
.dll windows:5 windows x86 arch:x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress

Exports

Exports

?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32

Sections

.text
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 319B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ