27f8d7bbfe91b1ef754a445fbccc24c9da11695ca63c44a33fa12a1df338b76f[.]dll | Triage

Sharing

General

Target

27f8d7bbfe91b1ef754a445fbccc24c9da11695ca63c44a33fa12a1df338b76f.dll
Size

315KB
MD5

8b46c170f7f8a38a8f69fa4bc2b53d61
SHA1

bd61c244153364c6322a4bc9337d15dcf9c3bf00
SHA256

27f8d7bbfe91b1ef754a445fbccc24c9da11695ca63c44a33fa12a1df338b76f
SHA512

37fbb60a471e58ccab0aefbf530bdb3c674310b1abf7d1966493ff890119d4bcb68fe8d9b21bae13d98842811634dc8fc192801b0a94b91ed62a674477e8dabf
SSDEEP

6144:YutK09bpsWYrPnP3UKLSr1TS8BbdrFucR+z+qagIK+bcgaI0b:BK0YWYrPP35LSrBS8LQ4+z+qagQYVIK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27f8d7bbfe91b1ef754a445fbccc24c9da11695ca63c44a33fa12a1df338b76f.dll

Files

27f8d7bbfe91b1ef754a445fbccc24c9da11695ca63c44a33fa12a1df338b76f.dll
.dll windows:4 windows x86 arch:x86

1e14d607956b4cc2b9b7835c72bf0b77

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

mfc42

ord690

msvcrt

_strcmpi

kernel32

CreateDirectoryA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

GetDesktopWindow

advapi32

RegDeleteValueA

ws2_32

htons

shlwapi

PathIsDirectoryA

ole32

CoUninitialize

oleaut32

SafeArrayGetVartype

msvcp60

?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z

netapi32

Netbios

Exports

Exports

DoAddToFavDlg
InputFile
PrintFile

Sections

.text
Size: 306KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE