4b42a4307d82f04e06f484d3fe56d85911f327dcce74a516e929c59a4477ea28N | Triage

Sharing

General

Target

4b42a4307d82f04e06f484d3fe56d85911f327dcce74a516e929c59a4477ea28N
Size

284KB
MD5

17bb4c157d79f8a1f875ec61867186d0
SHA1

51cd124a9d38c6add1e39d23ec2cf3d7b29f436d
SHA256

4b42a4307d82f04e06f484d3fe56d85911f327dcce74a516e929c59a4477ea28
SHA512

ea6a6e6dafb691b56f1d7f093791e07e7f15c0e7c574b3204aa619d1a54d9531b6dc9ccb9216a15217fede95ddf4da65f17a24787cbe98a9934d1433c6716588
SSDEEP

6144:Dgo2jIdri0IsvgUZoQAtVFc0lV+2bzuKj2O6uDOavFgLgEO:Dgo4Idri0IqhZonZbzul8NFgPO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b42a4307d82f04e06f484d3fe56d85911f327dcce74a516e929c59a4477ea28N

Files

4b42a4307d82f04e06f484d3fe56d85911f327dcce74a516e929c59a4477ea28N
.dll windows:4 windows x86 arch:x86

e6a7b7952c7b4c3465857a84d183c625

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

SetMenuInfo
SetFocus
MessageBeep
LoadImageA
IsCharUpperA
CreatePopupMenu
CreateDesktopA
CopyRect
CopyImage

kernel32

GetLastError
GetCommandLineA
VirtualAlloc
SetEndOfFile

oleaut32

OleLoadPicture
ClearCustData
OleTranslateColor
SysFreeString
SysReAllocString
GetErrorInfo
OleIconToCursor

Sections

.text
Size: 36KB - Virtual size: 392KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 242KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ