Static task
static1
Behavioral task
behavioral1
Sample
426fd8d69e2b050bb41877f9cb30b8626e6a6f8cab6e42c4d987ebb0c2d89d5bN.dll
Resource
win7-20240903-en
General
-
Target
426fd8d69e2b050bb41877f9cb30b8626e6a6f8cab6e42c4d987ebb0c2d89d5bN
-
Size
120KB
-
MD5
c48eb80cc3b77e39c07ae36d8199abe0
-
SHA1
965d423feab916f28bc5e004b2736fcfd809765c
-
SHA256
426fd8d69e2b050bb41877f9cb30b8626e6a6f8cab6e42c4d987ebb0c2d89d5b
-
SHA512
986fdbbec6519b00e874962d87ba88b64fdc0a9530c0b8e6cb9951c10b924c2503927fa651d5efc316e3e0a8e96f05b5eca4d99290a5b5db4a2fbcc36eff36a0
-
SSDEEP
3072:cF/KH+36hN/AHqA/uV1QyqY5GREZ5GGAL0sA:j+CNyqAm175Fzex
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 426fd8d69e2b050bb41877f9cb30b8626e6a6f8cab6e42c4d987ebb0c2d89d5bN
Files
-
426fd8d69e2b050bb41877f9cb30b8626e6a6f8cab6e42c4d987ebb0c2d89d5bN.dll windows:4 windows x86 arch:x86
0f44bf2b3b0b8d5ecae5689ff1d0e90d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode
user32
wsprintfA
Sections
.text Size: 119KB - Virtual size: 118KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 376B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ