SecuriteInfo[.]com[.]Variant[.]Tedy[.]391406[.]817[.]32155[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Tedy.391406.817.32155.dll
Size

10KB
MD5

458c40554d96e56e679f5baffaf936f2
SHA1

2ca5c9258b1194b2b3c7103e989f32ba39bfb3a7
SHA256

26a517115fef11c09ffa8b17734951f03958d0bda4f14652b0d136de5aecb2b6
SHA512

d1871380c44c9673400f8f9204d1f72638ad5f57ddf7f00c401692834f41173770c57b710f9f2bf7e0213d7e47c80534b4558a693d731aaf9742c0987c81528a
SSDEEP

192:26V2zATvBhZ7+5QnIQYe+qfaSdXIFwp12cu:NV2z+uiDiSdXP72J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Variant.Tedy.391406.817.32155.dll

Files

SecuriteInfo.com.Variant.Tedy.391406.817.32155.dll
.dll windows x86

eed76f52bdfc4695e3635fd281dbe35b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
EnumSystemCodePagesA
LoadLibraryA
GetProcAddress
VirtualProtect
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent

winmm

mmioSendMessage
WOW32ResolveMultiMediaHandle
mmioAscend
auxGetNumDevs
timeSetEvent
waveOutGetNumDevs
tid32Message

comdlg32

PageSetupDlgA
ChooseColorA
GetOpenFileNameA
GetSaveFileNameW
GetFileTitleW

crypt32

CertGetCRLFromStore
CryptGetMessageCertificates

resutils

ResUtilGetBinaryProperty
ResUtilResourceTypesEqual
ResUtilStartResourceService
ClusWorkerCheckTerminate
ResUtilStopResourceService

mscms

GetPS2ColorRenderingIntent
SetColorProfileElementSize
GetColorProfileElementTag
DisassociateColorProfileFromDeviceA
SetStandardColorSpaceProfileW

mapi32

ord161
ord21
ord177
ord182
ord171
ord76
ord186
ord200

Exports

Exports

JKbtgdfd
_AllocateExecutableMemory@4
_AllocateMemory@4
_AllocateReadOnlyMemory@4
_ChangeMemoryProtection@16
_CompareMemory@12
_FindPattern@16
_FreeMemory@4
_GCopyMemory@12
_GFillMemory@12
_GMoveMemory@12
_GZeroMemory@8
_ReadMemory@12
_WriteMemory@12

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eed76f52bdfc4695e3635fd281dbe35b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

winmm

comdlg32

crypt32

resutils

mscms

mapi32

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 12B

.CRT Size: 512B - Virtual size: 4B

.reloc Size: 512B - Virtual size: 400B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 12B

.CRT
Size: 512B - Virtual size: 4B

.reloc
Size: 512B - Virtual size: 400B