SecuriteInfo[.]com[.]Variant[.]Barys[.]431180[.]31317[.]2043

General

Target

SecuriteInfo.com.Variant.Barys.431180.31317.2043
Size

5KB
MD5

0ca58b2cb85a90d2ce58e748b43770a8
SHA1

3d417a0927f9aed78d6b22aa42c8833bdc380e11
SHA256

d2163c67dcbe2bee19fc53966ef331d300516e769339ae460daf5130243742ff
SHA512

6a54968fd7cccdf3586ae67d0b1bebedcc7ed350c56c0ed59e87be9f868d58a9a422fee880a557f647e9ada84b69d816de66007488237e980cfc52212123d83f
SSDEEP

48:iAMHijql4r6tMCKipDd7ZgF+hp4YA/aldDd7x9S8P9+pu4NeXiF8hiQ/55y:prh05Ay7hjl+p7eXiE5/5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Variant.Barys.431180.31317.2043

Files

SecuriteInfo.com.Variant.Barys.431180.31317.2043
.dll windows x86

166daa98e5594c0b411de0ccaa15541f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetHotKey
ImmEnumRegisterWordW
ImmAssociateContextEx
ImmGetIMCCSize
ImmSetCompositionStringA
ImmRequestMessageW
ImmUnlockIMC
ImmLockIMCC

kernel32

GetModuleHandleA
VirtualAlloc
EnumResourceTypesA
GetProcAddress

user32

LoadStringW
LoadMenuA
WinHelpA
CopyImage
SetClipboardViewer

mscms

GetCMMInfo
CheckBitmapBits
CheckColors
CloseColorProfile
ord1
GenerateCopyFilePaths

crypt32

CryptMsgSignCTL
CryptVerifyMessageSignatureWithKey

wsnmp32

ord902
ord206
ord600
ord900
ord906
ord503
ord101

msacm32

acmFilterTagEnumW
acmStreamClose
acmFilterTagEnumA
acmDriverOpen
acmFormatChooseW

mpr

WNetGetLastErrorA
WNetGetConnectionW
WNetConnectionDialog1A
WNetDisconnectDialog1A
WNetGetConnectionA
WNetUseConnectionA
MultinetGetConnectionPerformanceW
WNetDisconnectDialog

Exports

Exports

eIxo

Sections

.text
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

166daa98e5594c0b411de0ccaa15541f

Headers

DLL Characteristics

File Characteristics

Imports

imm32

kernel32

user32

mscms

crypt32

wsnmp32

msacm32

mpr

Exports

Exports

Sections

.text Size: 1024B - Virtual size: 592B

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 128B

.reloc Size: 512B - Virtual size: 124B

.text
Size: 1024B - Virtual size: 592B

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 128B

.reloc
Size: 512B - Virtual size: 124B