sc[.]dll | Triage

General

Target

sc.dll
Size

120KB
MD5

1790441567c3e8da7098fbb4263dcfc3
SHA1

3613ae47c1ab6223114a4bfdf0316e1b5070c879
SHA256

a58e62e75769c14df49cde95ae22301cf5e9d9fb9651e91959476cefc6d776f9
SHA512

46e6ba71dbe31bcfc0ee9ba6b916b0d15be9ed929e80126cd82b760d5b74aa40b2187f965657f59d9b9c1405580eaf1610bc686c80b6ba32523545a0097554c1
SSDEEP

1536:VW8WM1XkMLQtqEsz6mQYd/LyTm4WGWEGmWszUOMqOlYH3wPclGsWjcdD+HjC3/y8:XWyXomQY5z4pWOn4laHAWpKjuy

Score

N/A

Malware Config

Signatures

Files

sc.dll
.dll windows x86

1d3660d98b83b887f63b31965979e892

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetModuleFileNameA
GetTickCount
GetLastError
GetLocalTime
GetNativeSystemInfo
FreeLibrary
HeapAlloc
MultiByteToWideChar
GetProcessHeap
IsBadReadPtr
SetLastError
GetProcAddress
LoadLibraryA
GetModuleHandleA
TerminateThread
HeapFree
WideCharToMultiByte
CloseHandle
CreateFileW
HeapReAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetCurrentThreadId
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
GetStdHandle
WriteFile
GetModuleFileNameW
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
GetFileType
DeleteCriticalSection
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
LoadLibraryExW
OutputDebugStringW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
LCMapStringW
RtlUnwind
HeapSize
SetStdHandle
WriteConsoleW
FlushFileBuffers
VirtualQuery

advapi32

GetUserNameA

ws2_32

gethostname

Exports

Exports

F

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d3660d98b83b887f63b31965979e892

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

ws2_32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 84KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 4KB - Virtual size: 14KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 84KB - Virtual size: 84KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 4KB - Virtual size: 14KB

.reloc
Size: 5KB - Virtual size: 4KB