a100f8704c13d5161879c18b0efc3e21ff8e819abf24b69951af4af10ea857aaN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a100f8704c13d5161879c18b0efc3e21ff8e819abf24b69951af4af10ea857aaN
Size

6KB
MD5

44dc08895d211c0a7e8f717131653280
SHA1

3e28dbf24e36e17af049d8e9518b910daf8e3407
SHA256

a100f8704c13d5161879c18b0efc3e21ff8e819abf24b69951af4af10ea857aa
SHA512

abfb15aa95a5a0f57d6f18e8e3d4a7255260833cf4396d714272e4dec92c51ac44da9467907a7641e366382f28eea99e349e2f2cbc911c9c698c5af93aa60a5e
SSDEEP

96:hy859x0P8MaihceYwXZlIOoTnU9GnwESRE:F5oLz/YwXZlIOoTnUUnwPRE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a100f8704c13d5161879c18b0efc3e21ff8e819abf24b69951af4af10ea857aaN

Files

a100f8704c13d5161879c18b0efc3e21ff8e819abf24b69951af4af10ea857aaN
.dll windows:5 windows x86 arch:x86

c4c9ecfc26ca516a80b8f6f5b2bdb7e6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryW
GetProcAddress
CreateFileA

msvcrt

free
_initterm
malloc
_adjust_fdiv

Exports

Exports

rundll32

Sections

.text
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 385B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ