1ecf5f55b44702fae55795344663ecaaeb44fccfdb977a0bb7e95448075f1d78

Sharing

Copy URL Twitter E-mail

General

Target

1ecf5f55b44702fae55795344663ecaaeb44fccfdb977a0bb7e95448075f1d78
Size

118KB
MD5

1cc55c09f818a8d540e99c1af52c86cc
SHA1

d5699d9a40df71f365b08a2c9e0ad22c6c204e02
SHA256

1ecf5f55b44702fae55795344663ecaaeb44fccfdb977a0bb7e95448075f1d78
SHA512

91fddaeff74d62d397a8926727a926a1dd3f89686e867e92b7088fe081ba3669fd550fce328bd7dac0f93d396a674bf7931f1a8c7ea18c10a3a7eb7a6ad0653b
SSDEEP

3072:O59EuH2sRulHlXxCY5xXzoG3QCzoG3QdL:B0Xgxj1c

Score

N/A

Malware Config

Signatures

Files

1ecf5f55b44702fae55795344663ecaaeb44fccfdb977a0bb7e95448075f1d78
.dll windows x86

3337698f00d7afa3dd237e7f8d54d0a7

Code Sign

29:91:e1:1b:94:9b:d7:9b:48:8d:41:3e:68:60:cd:19
Certificate

Issuer

CN=123ttt

Not Before

08/03/2012, 07:59

Not After

31/12/2039, 23:59

Subject

CN=123ttt

Extended Key Usages

ExtKeyUsageCodeSigning

59:4c:56:c4:e6:bd:bc:6a:5f:de:db:f7:73:fb:bd:94:e6:df:59:a3
Signer

Actual PE Digest

59:4c:56:c4:e6:bd:bc:6a:5f:de:db:f7:73:fb:bd:94:e6:df:59:a3

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=123ttt

15/09/2022, 14:52
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
CreateFileA
GetProcAddress
LoadLibraryA
GetWindowsDirectoryA
lstrlenA
lstrcpyA
GetCommState
InterlockedCompareExchange

user32

DrawEdge
DrawIconEx
DrawTextW
EmptyClipboard
EnumDisplayDevicesA
EnumWindowStationsA
EnumWindows
FillRect
FlashWindow
FrameRect
GetClipCursor
GetComboBoxInfo
GetCursorInfo
GetDC
GetDesktopWindow
GetGUIThreadInfo
GetKeyboardLayoutList
GetKeyboardLayoutNameW
GetMenuStringA
GetMessageA
GetPropA
GetTabbedTextExtentA
GetTitleBarInfo
GetWindowLongA
GetWindowLongW
GetWindowModuleFileNameA
GetWindowModuleFileNameW
IMPGetIMEW
InSendMessage
IntersectRect
IsMenu
IsRectEmpty
LoadAcceleratorsW
LoadKeyboardLayoutW
MapWindowPoints
MonitorFromWindow
MsgWaitForMultipleObjects
OpenDesktopW
OpenInputDesktop
PeekMessageW
PostMessageW
RedrawWindow
RegisterClassA
RegisterClipboardFormatW
RemovePropW
ScrollDC
ScrollWindow
ScrollWindowEx
SetCursorPos
SetDlgItemTextW
SetLastErrorEx
SetPropA
SetScrollPos
SetSystemCursor
SetThreadDesktop
SetUserObjectInformationW
SetWindowContextHelpId
SetWindowPlacement
SetWindowsHookExA
ShowCursor
SystemParametersInfoA
ToAscii
UnhookWindowsHookEx
UnpackDDElParam
UnregisterDeviceNotification
VkKeyScanExA
WaitMessage
WinHelpA
WinHelpW
wvsprintfA
DrawCaption
DrawAnimatedRects
DragObject
DlgDirSelectExA
DialogBoxParamA
DeferWindowPos
DefWindowProcA
DefFrameProcA
DefDlgProcW
DdeReconnect
DdeGetLastError
DdeGetData
DdeFreeDataHandle
DdeDisconnectList
CreateIcon
CreateDialogIndirectParamW
CloseWindowStation
CharToOemBuffA
CharPrevW
CallWindowProcA
BringWindowToTop
BeginDeferWindowPos

comdlg32

ChooseColorW
ChooseFontA
ChooseFontW
CommDlgExtendedError
FindTextA
FindTextW
GetFileTitleA
GetFileTitleW
GetOpenFileNameA
GetOpenFileNameW
ReplaceTextW
ReplaceTextA
PrintDlgW
PrintDlgExW
PrintDlgExA
PrintDlgA
PageSetupDlgW
PageSetupDlgA
GetSaveFileNameW
GetSaveFileNameA
ChooseColorA

ole32

CLIPFORMAT_UserMarshal
CoAllowSetForegroundWindow
CoCopyProxy
CoCreateGuid
CoCreateInstanceEx
CoDisableCallCancellation
CoDisconnectObject
CoEnableCallCancellation
CoGetApartmentID
CoGetCallerTID
CoGetClassObject
CoGetClassVersion
CoGetCurrentLogicalThreadId
CoGetInstanceFromIStorage
CoGetInterfaceAndReleaseStream
CoGetObject
CoImpersonateClient
CoLoadLibrary
CoMarshalHresult
CoQueryAuthenticationServices
CoQueryClientBlanket
CoQueryReleaseObject
CoRegisterMessageFilter
CoRegisterSurrogate
CoRegisterSurrogateEx
CoUninitialize
CoUnloadingWOW
CoUnmarshalInterface
CreateClassMoniker
CreateDataAdviseHolder
CreateFileMoniker
CreateItemMoniker
CreateOleAdviseHolder
GetClassFile
GetHGlobalFromStream
GetHookInterface
HACCEL_UserFree
HACCEL_UserSize
HBITMAP_UserUnmarshal
HBRUSH_UserFree
HENHMETAFILE_UserSize
HICON_UserFree
HICON_UserMarshal
HICON_UserSize
HMETAFILEPICT_UserUnmarshal
HMETAFILE_UserMarshal
HWND_UserFree
MonikerRelativePathTo
OleCreate
OleCreateDefaultHandler
OleCreateEmbeddingHelper
OleCreateLinkFromData
OleCreateLinkFromDataEx
OleCreateLinkToFileEx
OleCreateMenuDescriptor
OleCreateStaticFromData
OleDraw
OleInitialize
OleInitializeWOW
OleLoadFromStream
OleMetafilePictFromIconAndLabel
OleQueryLinkFromData
OleRegGetUserType
OleSetAutoConvert
OleUninitialize
ProgIDFromCLSID
PropVariantClear
PropVariantCopy
ReadClassStm
RegisterDragDrop
SNB_UserSize
SNB_UserUnmarshal
STGMEDIUM_UserFree
SetConvertStg
StgConvertPropertyToVariant
StgIsStorageFile
StgOpenPropStg
StgPropertyLengthAsVariant
UpdateDCOMSettings
UtGetDvtd32Info
WdtpInterfacePointer_UserFree
WdtpInterfacePointer_UserMarshal
WriteOleStg

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3337698f00d7afa3dd237e7f8d54d0a7

Code Sign

29:91:e1:1b:94:9b:d7:9b:48:8d:41:3e:68:60:cd:19Certificate

Extended Key Usages

59:4c:56:c4:e6:bd:bc:6a:5f:de:db:f7:73:fb:bd:94:e6:df:59:a3Signer

Signature Validations

Verification

15/09/2022, 14:52 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comdlg32

ole32

Sections

.text Size: 9KB - Virtual size: 9KB

.data Size: 1024B - Virtual size: 980B

.text Size: 21KB - Virtual size: 20KB

.text2 Size: 1KB - Virtual size: 1KB

.rsrc Size: 82KB - Virtual size: 81KB

.reloc Size: 2KB - Virtual size: 1KB

29:91:e1:1b:94:9b:d7:9b:48:8d:41:3e:68:60:cd:19
Certificate

59:4c:56:c4:e6:bd:bc:6a:5f:de:db:f7:73:fb:bd:94:e6:df:59:a3
Signer

15/09/2022, 14:52
Valid: false

.text
Size: 9KB - Virtual size: 9KB

.data
Size: 1024B - Virtual size: 980B

.text
Size: 21KB - Virtual size: 20KB

.text2
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 82KB - Virtual size: 81KB

.reloc
Size: 2KB - Virtual size: 1KB