Static task
static1
Behavioral task
behavioral1
Sample
766ad1604235763431c502e7b5ad0aa3b0f35753dc4dee0b655b385d59ed878a.dll
Resource
win7-20240903-en
General
-
Target
766ad1604235763431c502e7b5ad0aa3b0f35753dc4dee0b655b385d59ed878a
-
Size
120KB
-
MD5
8990526710c4a5468b85a54a3e7cde6c
-
SHA1
1cc39153a8badde651f62158ac2cb3433ad6afd8
-
SHA256
766ad1604235763431c502e7b5ad0aa3b0f35753dc4dee0b655b385d59ed878a
-
SHA512
e23a118bfbf20a62dc92811cd7dd0c54eda1ad9afc3e1e60ec484b06ced399ac2fd671cd96b33385064abc0a32bb721c058129a71c0494d628ad6d6301321d53
-
SSDEEP
1536:vx94sbeY6niLzwOZlDbhV7DcxTQsnjzdgOktz3CMd0DPUDKdGVIKLymIrjzs2VK2:vxeKeY6niowaVjPI7CPbUD8GHLg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 766ad1604235763431c502e7b5ad0aa3b0f35753dc4dee0b655b385d59ed878a
Files
-
766ad1604235763431c502e7b5ad0aa3b0f35753dc4dee0b655b385d59ed878a.dll windows:4 windows x86 arch:x86
0f44bf2b3b0b8d5ecae5689ff1d0e90d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode
user32
wsprintfA
Sections
.text Size: 119KB - Virtual size: 118KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 376B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ