479c5c4e4d3deb13e67458d32ba45a3c5bcecccbec73845a214024cdacac32a0 | Triage

Sharing

General

Target

479c5c4e4d3deb13e67458d32ba45a3c5bcecccbec73845a214024cdacac32a0
Size

387KB
MD5

fe2bddb7c4db4c09c410e121df59f94a
SHA1

400784cda62cb066623194b3aeaef228f640ac5c
SHA256

479c5c4e4d3deb13e67458d32ba45a3c5bcecccbec73845a214024cdacac32a0
SHA512

083a764571e7e5f7d28ccb85d331d8f191123f5a2e738f087acd8eee16e97693ae68e8d41fcf0abd475eb193dea277a84ea3ad3e6b2efd17ddba19a43b8c9fcc
SSDEEP

6144:vX2EHfCFHRbi8wunhuAKDz0zbaLH5mnqdrcBnu++9ql7VlBhq0QYgUfB:vX2EHaFxO8LxKDzbeqrcqqVVlBtQYf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
479c5c4e4d3deb13e67458d32ba45a3c5bcecccbec73845a214024cdacac32a0

Files

479c5c4e4d3deb13e67458d32ba45a3c5bcecccbec73845a214024cdacac32a0
.dll regsvr32 windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

DllRegisterServer

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 354KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ