IconCodecService[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

IconCodecService.dll
Size

36KB
MD5

378399508c379e43e656313e4892a4fe
SHA1

e6a71fedd77ac651ab3119cb22ef25d26f84039e
SHA256

095d4c0a31e3ef842d80c6b9b43e3eb7178b5d106df2c842cf5cced6a55680e4
SHA512

98625af8c3df350ffc3516ceea54e974ea29a0c27710fbbc857116366215bcb8e36e830547eebb3315b58619b599ad23c8fffa9f9919cd92c6db51bb83daa7ef
SSDEEP

192:FX3NpZb6rFeLfWoHwipIvyDzZ94gGYgm/WYLElPwBKsR/vrc/BeWS9qW:NNpZgieHwIqZ94H2WYAlEKavoeWGqW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
IconCodecService.dll

Files

IconCodecService.dll
.dll windows x64

bc4916a3897fae424d0e5b39b694361b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

_initterm
__C_specific_handler
free
malloc
_amsg_exit
_XcptFilter

kernel32

GetCurrentThreadId
DelayLoadFailureHook
ResolveDelayLoadedAPI
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetTickCount
GlobalSize
DisableThreadLibraryCalls
GlobalFree
GlobalReAlloc
Sleep
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime

user32

PrivateRegisterICSProc

api-ms-win-core-com-l1-1-0

GetHGlobalFromStream
CreateStreamOnHGlobal

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc4916a3897fae424d0e5b39b694361b

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

api-ms-win-core-com-l1-1-0

Sections

.text Size: 8KB - Virtual size: 6KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 1KB

.pdata Size: 4KB - Virtual size: 336B

.didat Size: 4KB - Virtual size: 16B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 56B

.text
Size: 8KB - Virtual size: 6KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 1KB

.pdata
Size: 4KB - Virtual size: 336B

.didat
Size: 4KB - Virtual size: 16B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 56B