SEPUpdate[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

SEPUpdate.dll
Size

593KB
MD5

637dc90dcbb599cb9d573b1e2d06634b
SHA1

b542a8144632610f565e98e43511ffab19444f4b
SHA256

4a6ad7214df8e29e87dbbd3b5998136744dab385105d70d31cba317764258671
SHA512

4aace7788acf01d4492dc0fdfd26586e8c88f51f550347865f88a464e1b279b4fb39c9162d77115db909b0011aeb20b10e7a5fbebc3f3b5c5e8b01011e245237
SSDEEP

12288:Njxfi5xyiN8D4Wp4Zen4q4Ny+0x9T8PDzwwFnzbmRY7PV3f:xqr8D4WyZkeNc9T8bzRFnvmkPV

Score

1^/10

Malware Config

Signatures

Files

SEPUpdate.dll
.dll windows x64

80b3dae60c72929e7a248a5ab0c72d7a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

memcpy

kernel32

InitOnceComplete
ReleaseSRWLockShared
HeapSetInformation
FindResourceW
WriteConsoleW
VirtualAllocEx
ExitProcess
RtlUnwindEx
InterlockedPushEntrySList
CreateEventA
QueryPerformanceCounter
SetCommTimeouts
VirtualQuery
LoadLibraryExW
AreFileApisANSI
GetVolumeInformationW
GetLogicalProcessorInformation
QueryInformationJobObject
TlsSetValue
SetLastError
InterlockedFlushSList
GetCommandLineW
GetTimeFormatEx
CreateNamedPipeW
GetFullPathNameA
GetQueuedCompletionStatus
InitializeCriticalSectionEx
LocalAlloc
OutputDebugStringA
CallbackMayRunLong
IsProcessInJob
LCIDToLocaleName
PostQueuedCompletionStatus
GetPrivateProfileStringW
GetLastError

user32

InflateRect
DefWindowProcW
GetMenuItemInfoW
GetSystemMetrics
UnregisterClassW
SetCaretPos
DispatchMessageW
GetCursorInfo
GetLayeredWindowAttributes
SetWindowPlacement
FrameRect
DrawFocusRect
IntersectRect
CharNextW
LoadIconW
FindWindowW
UpdateLayeredWindow
DrawEdge
SetForegroundWindow
GetCursorPos
GetWindowRgn
InvertRect
PeekMessageW
SetCursorPos
FlashWindowEx

gdi32

GdiAlphaBlend
BeginPath
StretchDIBits
GetClipBox
GetTextMetricsW
CreateRectRgn
DeleteDC
ExtEscape
CreatePen
CreateFontIndirectA
MoveToEx
RestoreDC
DeleteObject
CreateSolidBrush
CloseFigure
CombineRgn
GetRgnBox
StartDocW
SetWorldTransform
BitBlt
SaveDC

advapi32

InitializeAcl
RegEnumValueA
GetUserNameW
RegCreateKeyExW

Exports

Exports

CPlApplet

Sections

.text
Size: 581KB - Virtual size: 580KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80b3dae60c72929e7a248a5ab0c72d7a

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 581KB - Virtual size: 580KB

.data Size: 1024B - Virtual size: 1KB

.pdata Size: 512B - Virtual size: 192B

.idata Size: 3KB - Virtual size: 3KB

.reloc Size: 512B - Virtual size: 180B

.text
Size: 581KB - Virtual size: 580KB

.data
Size: 1024B - Virtual size: 1KB

.pdata
Size: 512B - Virtual size: 192B

.idata
Size: 3KB - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 180B