0b6233dd73af6f0264a7738a4e73feaa88624c29184cd09c71e37fb978b19a97N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b6233dd73af6f0264a7738a4e73feaa88624c29184cd09c71e37fb978b19a97N
Size

56KB
MD5

c45b287c81cfaba1f461c724f1aad7f0
SHA1

6e5f40275b6cba4b957cf22dde44ef797328bbea
SHA256

0b6233dd73af6f0264a7738a4e73feaa88624c29184cd09c71e37fb978b19a97
SHA512

85366b4a2a1130b1825164702f189e2d37ef4860fd05c6b947badf4ad6e76df1f5f2cd8d2e57f702a6071d4a3de9f94f69197f48aa976c04c73c26c08d8b60ae
SSDEEP

768:hKRgVBiJq6kmtm4AceP8a2dXYXRdzA4CIeR1rsJGB5E+fBwsKlrhgKBNo2Lti1Df:A2BiJvkm41V2SjfCIeRhQO5xf9yLNok

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b6233dd73af6f0264a7738a4e73feaa88624c29184cd09c71e37fb978b19a97N

Files

0b6233dd73af6f0264a7738a4e73feaa88624c29184cd09c71e37fb978b19a97N
.dll windows:5 windows x86 arch:x86

6dfbc160505aa2f7205766eaa6fe72a1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CreateWindowExA

Exports

Exports

ServiceMain

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 96B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ