pupyx64d[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

pupyx64d.dll
Size

5.4MB
MD5

9e851d0d4c61b88faf407f7748dfcf71
SHA1

53e755c26166dd614416035752d25fa748c67b68
SHA256

332d784fcc5a36c993ddc5691ebed9ed208812e776dfa65ca41f9822c054f81d
SHA512

5b8dd5edf247764acbd80e1065562efff1f6fd06f2f82c4a57d8ddd7f68e196e579652b692f4f63bdcc918cb88b60a02e232c7286e9f0ce36e0696366d96d841
SSDEEP

98304:GdUYjyv6cniGePYd2KIiAn5+AQ5YPpyfOEtEbgLmzsxe0HK:GmfuKIiANpyfftWUmzsLK

Score

1^/10

Malware Config

Signatures

Files

pupyx64d.dll
.dll windows x64

5e57e4023f54dae49a90b2f5d12fdc08

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

DestroyWindow
RegisterClassExA
MsgWaitForMultipleObjects
TranslateMessage
UnregisterClassA
CreateWindowExA
PeekMessageA
DefWindowProcA
DispatchMessageA

advapi32

CreateProcessAsUserA

kernel32

ReadFile
SetStdHandle
SetFilePointer
WriteConsoleW
SetEndOfFile
GetThreadLocale
Sleep
WaitForMultipleObjects
CreateThread
FreeLibrary
VirtualFree
OpenProcess
Thread32First
Thread32Next
GetLastError
SetLastError
GetProcAddress
VirtualAlloc
VirtualProtectEx
VirtualAllocEx
LoadLibraryA
OpenThread
CreateToolhelp32Snapshot
CloseHandle
WriteProcessMemory
ResumeThread
GetCurrentThreadId
CreateRemoteThread
GetModuleHandleA
GetThreadContext
SetThreadContext
ReadProcessMemory
CreateProcessA
TerminateProcess
CreatePipe
FindResourceA
GetModuleHandleExA
FindResourceExW
FindResourceW
LoadResource
LoadLibraryExW
GetModuleHandleExW
GetModuleHandleW
InitializeCriticalSection
FindResourceExA
WideCharToMultiByte
LoadLibraryW
SizeofResource
LeaveCriticalSection
GetModuleFileNameW
MultiByteToWideChar
EnterCriticalSection
LocalAlloc
GetModuleFileNameA
LoadLibraryExA
LocalFree
CreateFileA
GetNativeSystemInfo
lstrlenA
MapViewOfFile
UnmapViewOfFile
HeapAlloc
HeapFree
GetProcessHeap
IsBadReadPtr
RtlAddFunctionTable
CreateFileMappingA
VirtualProtect
GetCommandLineW
SetErrorMode
GetCurrentProcess
GetTempFileNameA
GetTempPathA
ExitProcess
HeapReAlloc
SetConsoleCtrlHandler
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlCaptureContext
FlsSetValue
GetCommandLineA
HeapSetInformation
HeapCreate
HeapDestroy
WriteFile
GetStdHandle
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
DecodePointer
FlsGetValue
FlsFree
FlsAlloc
LCMapStringA
LCMapStringW
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
DeleteCriticalSection
RtlUnwindEx
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetStartupInfoA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
WriteConsoleA
GetConsoleOutputCP

Exports

Exports

JNI_OnLoad
Launch
ReflectiveLoader

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 287KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xzdata
Size: 5.0MB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e57e4023f54dae49a90b2f5d12fdc08

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Exports

Exports

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 287KB - Virtual size: 294KB

.pdata Size: 4KB - Virtual size: 4KB

.xzdata Size: 5.0MB - Virtual size: 5.0MB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 287KB - Virtual size: 294KB

.pdata
Size: 4KB - Virtual size: 4KB

.xzdata
Size: 5.0MB - Virtual size: 5.0MB

.reloc
Size: 5KB - Virtual size: 4KB