multivolumedEquipages[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

multivolumedEquipages.dll
Size

1.2MB
MD5

d32fb41b4a8976a41a74011e1b8358b5
SHA1

2bbbda0176d0b3f4be098af529a246831f943dee
SHA256

9bb2c6f0cd367b61187b6d3b21a82e2130ed93294dbf33c823227694cbfc6859
SHA512

7ab6fe9813593da88972661d3cbc33498219e4421ffd814f363ecd07404170f72d1c671be4e71280ad516c68cf0d56a685cfd3fa69916e977287380237e91262
SSDEEP

24576:KGSbIuGSom9C0k1HH1cqj06uPi2bro8nuuDYmc1WpFgiYnGn6Ai:Kf8r9W01Gn6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
multivolumedEquipages.dll

Files

multivolumedEquipages.dll
.dll windows x86

Password: infected

0c82c186a57f1cdec6d116d473f51dbe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DecodePointer
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
FormatMessageW
GetLastError
EnterCriticalSection
LocalFree
GetModuleHandleW
GetVersionExA
LoadLibraryW
GetProcAddress
QueryPerformanceFrequency
QueryPerformanceCounter
DeleteFileW
CreateFileW
GetTempFileNameW
GetTempPathW
CloseHandle
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EncodePointer
IsProcessorFeaturePresent
IsDebuggerPresent
Sleep
InterlockedCompareExchange
InterlockedExchange
DisableThreadLibraryCalls

user32

SystemParametersInfoA
ReleaseDC
GetDC
FillRect

Exports

Exports

iairo_append_path
iairo_arc
iairo_arc_negative
iairo_clip
iairo_clip_extents
iairo_clip_preserve
iairo_close_path
iairo_copy_clip_rectangle_list
iairo_copy_page
iairo_copy_path
iairo_copy_path_flat
iairo_create
iairo_curve_to
iairo_debug_reset_static_data
iairo_destroy
iairo_device_acquire
iairo_device_destroy
iairo_device_finish
iairo_device_flush
iairo_device_get_reference_count
iairo_device_get_type
iairo_device_get_user_data
iairo_device_observer_elapsed
iairo_device_observer_fill_elapsed
iairo_device_observer_glyphs_elapsed
iairo_device_observer_mask_elapsed
iairo_device_observer_paint_elapsed
iairo_device_observer_print
iairo_device_observer_stroke_elapsed
iairo_device_reference
iairo_device_release
iairo_device_set_user_data
iairo_device_status
iairo_device_to_user
iairo_device_to_user_distance
iairo_fill
iairo_fill_extents
iairo_fill_preserve
iairo_font_extents
iairo_font_face_destroy
iairo_font_face_get_reference_count
iairo_font_face_get_type
iairo_font_face_get_user_data
iairo_font_face_reference
iairo_font_face_set_user_data
iairo_font_face_status
iairo_font_options_copy
iairo_font_options_create
iairo_font_options_destroy
iairo_font_options_equal
iairo_font_options_get_antialias
iairo_font_options_get_hint_metrics
iairo_font_options_get_hint_style
iairo_font_options_get_subpixel_order
iairo_font_options_hash
iairo_font_options_merge
iairo_font_options_set_antialias
iairo_font_options_set_hint_metrics
iairo_font_options_set_hint_style
iairo_font_options_set_subpixel_order
iairo_font_options_status
iairo_format_stride_for_width
iairo_get_antialias
iairo_get_current_point
iairo_get_dash
iairo_get_dash_count
iairo_get_fill_rule
iairo_get_font_face
iairo_get_font_matrix
iairo_get_font_options
iairo_get_group_target
iairo_get_line_cap
iairo_get_line_join
iairo_get_line_width
iairo_get_matrix
iairo_get_miter_limit
iairo_get_operator
iairo_get_reference_count
iairo_get_scaled_font
iairo_get_source
iairo_get_target
iairo_get_tolerance
iairo_get_user_data
iairo_glyph_allocate
iairo_glyph_extents
iairo_glyph_free
iairo_glyph_path
iairo_has_current_point
iairo_identity_matrix
iairo_image_surface_create
iairo_image_surface_create_for_data
iairo_image_surface_create_from_png
iairo_image_surface_create_from_png_stream
iairo_image_surface_get_data
iairo_image_surface_get_format
iairo_image_surface_get_height
iairo_image_surface_get_stride
iairo_image_surface_get_width
iairo_in_clip
iairo_in_fill
iairo_in_stroke
iairo_line_to
iairo_mask
iairo_mask_surface
iairo_matrix_init
iairo_matrix_init_identity
iairo_matrix_init_rotate
iairo_matrix_init_scale
iairo_matrix_init_translate
iairo_matrix_invert
iairo_matrix_multiply
iairo_matrix_rotate
iairo_matrix_scale
iairo_matrix_transform_distance
iairo_matrix_transform_point
iairo_matrix_translate
iairo_mesh_pattern_begin_patch
iairo_mesh_pattern_curve_to
iairo_mesh_pattern_end_patch
iairo_mesh_pattern_get_control_point
iairo_mesh_pattern_get_corner_color_rgba
iairo_mesh_pattern_get_patch_count
iairo_mesh_pattern_get_path
iairo_mesh_pattern_line_to
iairo_mesh_pattern_move_to
iairo_mesh_pattern_set_control_point
iairo_mesh_pattern_set_corner_color_rgb
iairo_mesh_pattern_set_corner_color_rgba
iairo_move_to
iairo_new_path
iairo_new_sub_path
iairo_paint
iairo_paint_with_alpha
iairo_path_destroy
iairo_path_extents
iairo_pattern_add_color_stop_rgb
iairo_pattern_add_color_stop_rgba
iairo_pattern_create_for_surface
iairo_pattern_create_linear
iairo_pattern_create_mesh
iairo_pattern_create_radial
iairo_pattern_create_raster_source
iairo_pattern_create_rgb
iairo_pattern_create_rgba
iairo_pattern_destroy
iairo_pattern_get_color_stop_count
iairo_pattern_get_color_stop_rgba
iairo_pattern_get_extend
iairo_pattern_get_filter
iairo_pattern_get_linear_points
iairo_pattern_get_matrix
iairo_pattern_get_radial_circles
iairo_pattern_get_reference_count
iairo_pattern_get_rgba
iairo_pattern_get_surface
iairo_pattern_get_type
iairo_pattern_get_user_data
iairo_pattern_reference
iairo_pattern_set_extend
iairo_pattern_set_filter
iairo_pattern_set_matrix
iairo_pattern_set_user_data
iairo_pattern_status
iairo_pdf_get_versions
iairo_pdf_surface_create
iairo_pdf_surface_create_for_stream
iairo_pdf_surface_restrict_to_version
iairo_pdf_surface_set_size
iairo_pdf_version_to_string
iairo_pop_group
iairo_pop_group_to_source
iairo_ps_get_levels
iairo_ps_level_to_string
iairo_ps_surface_create
iairo_ps_surface_create_for_stream
iairo_ps_surface_dsc_begin_page_setup
iairo_ps_surface_dsc_begin_setup
iairo_ps_surface_dsc_comment
iairo_ps_surface_get_eps
iairo_ps_surface_restrict_to_level
iairo_ps_surface_set_eps
iairo_ps_surface_set_size
iairo_push_group
iairo_push_group_with_content
iairo_raster_source_pattern_get_acquire
iairo_raster_source_pattern_get_callback_data
iairo_raster_source_pattern_get_copy
iairo_raster_source_pattern_get_finish
iairo_raster_source_pattern_get_snapshot
iairo_raster_source_pattern_set_acquire
iairo_raster_source_pattern_set_callback_data
iairo_raster_source_pattern_set_copy
iairo_raster_source_pattern_set_finish
iairo_raster_source_pattern_set_snapshot
iairo_recording_surface_create
iairo_recording_surface_get_extents
iairo_recording_surface_ink_extents
iairo_rectangle
iairo_rectangle_list_destroy
iairo_reference
iairo_region_contains_point
iairo_region_contains_rectangle
iairo_region_copy
iairo_region_create
iairo_region_create_rectangle
iairo_region_create_rectangles
iairo_region_destroy
iairo_region_equal
iairo_region_get_extents
iairo_region_get_rectangle
iairo_region_intersect
iairo_region_intersect_rectangle
iairo_region_is_empty
iairo_region_num_rectangles
iairo_region_reference
iairo_region_status
iairo_region_subtract
iairo_region_subtract_rectangle
iairo_region_translate
iairo_region_union
iairo_region_union_rectangle
iairo_region_xor
iairo_region_xor_rectangle
iairo_rel_curve_to
iairo_rel_line_to
iairo_rel_move_to
iairo_reset_clip
iairo_restore
iairo_rotate
iairo_save
iairo_scale
iairo_scaled_font_create
iairo_scaled_font_destroy
iairo_scaled_font_extents
iairo_scaled_font_get_ctm
iairo_scaled_font_get_font_face
iairo_scaled_font_get_font_matrix
iairo_scaled_font_get_font_options
iairo_scaled_font_get_reference_count
iairo_scaled_font_get_scale_matrix
iairo_scaled_font_get_type
iairo_scaled_font_get_user_data
iairo_scaled_font_glyph_extents
iairo_scaled_font_reference
iairo_scaled_font_set_user_data
iairo_scaled_font_status
iairo_scaled_font_text_extents
iairo_scaled_font_text_to_glyphs
iairo_script_create
iairo_script_create_for_stream
iairo_script_from_recording_surface
iairo_script_get_mode
iairo_script_set_mode
iairo_script_surface_create
iairo_script_surface_create_for_target
iairo_script_write_comment
iairo_select_font_face
iairo_set_antialias
iairo_set_dash
iairo_set_fill_rule
iairo_set_font_face
iairo_set_font_matrix
iairo_set_font_options
iairo_set_font_size
iairo_set_line_cap
iairo_set_line_join
iairo_set_line_width
iairo_set_matrix
iairo_set_miter_limit
iairo_set_operator
iairo_set_scaled_font
iairo_set_source
iairo_set_source_rgb
iairo_set_source_rgba
iairo_set_source_surface
iairo_set_tolerance
iairo_set_user_data
iairo_show_glyphs
iairo_show_page
iairo_show_text
iairo_show_text_glyphs
iairo_status
iairo_status_to_string
iairo_stroke
iairo_stroke_extents
iairo_stroke_preserve
iairo_surface_copy_page
iairo_surface_create_for_rectangle
iairo_surface_create_observer
iairo_surface_create_similar
iairo_surface_create_similar_image
iairo_surface_destroy
iairo_surface_finish
iairo_surface_flush
iairo_surface_get_content
iairo_surface_get_device
iairo_surface_get_device_offset
iairo_surface_get_fallback_resolution
iairo_surface_get_font_options
iairo_surface_get_mime_data
iairo_surface_get_reference_count
iairo_surface_get_type
iairo_surface_get_user_data
iairo_surface_has_show_text_glyphs
iairo_surface_map_to_image
iairo_surface_mark_dirty
iairo_surface_mark_dirty_rectangle
iairo_surface_observer_add_fill_callback
iairo_surface_observer_add_finish_callback
iairo_surface_observer_add_flush_callback
iairo_surface_observer_add_glyphs_callback
iairo_surface_observer_add_mask_callback
iairo_surface_observer_add_paint_callback
iairo_surface_observer_add_stroke_callback
iairo_surface_observer_elapsed
iairo_surface_observer_print
iairo_surface_reference
iairo_surface_set_device_offset
iairo_surface_set_fallback_resolution
iairo_surface_set_mime_data
iairo_surface_set_user_data
iairo_surface_show_page
iairo_surface_status
iairo_surface_supports_mime_type
iairo_surface_unmap_image
iairo_surface_write_to_png
iairo_surface_write_to_png_stream
iairo_svg_get_versions
iairo_svg_surface_create
iairo_svg_surface_create_for_stream
iairo_svg_surface_restrict_to_version
iairo_svg_version_to_string
iairo_text_cluster_allocate
iairo_text_cluster_free
iairo_text_extents
iairo_text_path
iairo_toy_font_face_create
iairo_toy_font_face_get_family
iairo_toy_font_face_get_slant
iairo_toy_font_face_get_weight
iairo_transform
iairo_translate
iairo_user_font_face_create
iairo_user_font_face_get_init_func
iairo_user_font_face_get_render_glyph_func
iairo_user_font_face_get_text_to_glyphs_func
iairo_user_font_face_get_unicode_to_glyph_func
iairo_user_font_face_set_init_func
iairo_user_font_face_set_render_glyph_func
iairo_user_font_face_set_text_to_glyphs_func
iairo_user_font_face_set_unicode_to_glyph_func
iairo_user_to_device
iairo_user_to_device_distance
iairo_version
iairo_version_string
iairo_win32_font_face_create_for_hfont
iairo_win32_font_face_create_for_logfontw
iairo_win32_font_face_create_for_logfontw_hfont
iairo_win32_printing_surface_create
iairo_win32_scaled_font_done_font
iairo_win32_scaled_font_get_device_to_logical
iairo_win32_scaled_font_get_logical_to_device
iairo_win32_scaled_font_get_metrics_factor
iairo_win32_scaled_font_select_font
iairo_win32_surface_create
iairo_win32_surface_create_with_ddb
iairo_win32_surface_create_with_dib
iairo_win32_surface_get_dc
iairo_win32_surface_get_image
iairo_xml_create
iairo_xml_create_for_stream
iairo_xml_for_recording_surface
must

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

0c82c186a57f1cdec6d116d473f51dbe

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 83KB - Virtual size: 82KB

.data Size: 1KB - Virtual size: 4KB

.rsrc Size: 108KB - Virtual size: 107KB

.reloc Size: 25KB - Virtual size: 25KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 83KB - Virtual size: 82KB

.data
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 108KB - Virtual size: 107KB

.reloc
Size: 25KB - Virtual size: 25KB