mssvoice[.]asi

General

Target

mssvoice.asi
Size

208KB
MD5

272eaa2b1eb6d5f5c4c69bd7ec11ff8a
SHA1

49130b79d46c245750afd947f50ce15ea01bd1b8
SHA256

bcafbc0806f63c9cc7f07ca9690e993f2347e67ead1da0852df7268ef8cab198
SHA512

cafca8fae0b0a189d369be2a3432208e54d157f6d5a1347b5bd7a6691c9b1ffffca337a90a7c79b2f40b854bc562a9a02fa190be6d0391b2ecb524c5a22baa90
SSDEEP

6144:YG5P8Y5LcRD3whh7pdxLgSs0cI6atE/aAO:tcRD6K0cI6atma

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
mssvoice.asi

Files

mssvoice.asi
.dll windows x86

1b75f67ab1fd4a288b021bd95e52b21e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DisableThreadLibraryCalls
RaiseException
RtlUnwind
VirtualQuery
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetCommandLineA
GetVersionExA
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
WriteFile
HeapAlloc
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
LoadLibraryA
HeapSize
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime

mss32

RIB_unregister_interface
_AIL_mem_free_lock@4
RIB_alloc_provider_handle
_AIL_mem_alloc_lock@4
RIB_register_interface

Exports

Exports

_RIB_Main@8

Sections

.text
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

CODE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b75f67ab1fd4a288b021bd95e52b21e

Headers

File Characteristics

Imports

kernel32

mss32

Exports

Exports

Sections

.text Size: 139KB - Virtual size: 138KB

CODE Size: 4KB - Virtual size: 4KB

.rdata Size: 53KB - Virtual size: 53KB

.data Size: 3KB - Virtual size: 6KB

DATA Size: 512B - Virtual size: 20B

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 139KB - Virtual size: 138KB

CODE
Size: 4KB - Virtual size: 4KB

.rdata
Size: 53KB - Virtual size: 53KB

.data
Size: 3KB - Virtual size: 6KB

DATA
Size: 512B - Virtual size: 20B

.reloc
Size: 6KB - Virtual size: 5KB