SecuriteInfo[.]com[.]Generic[.]Dacic[.]666DAB24[.]A[.]6C390C3D[.]30544[.]30213[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Generic.Dacic.666DAB24.A.6C390C3D.30544.30213.dll
Size

68KB
MD5

d7322712083028c72e93d79fe0eef58b
SHA1

ab359e5420a9ed0c7da1dbf8ac45c81a15e094eb
SHA256

731ae5fedaff27e521e176a752f8917ca4c475a1a424b85f344c189fbf8dd8b5
SHA512

6782e99257861a6077561318bcd74512dbd43eff28f2fb1d335db312667c556774e6d9bdb4d27d75d041150f919619d834bf067042cb9144f43adafe4cb8b1fe
SSDEEP

1536:HidFEak1f1SMqXkSb4sUJ42rF2xTtBda5:H+eaQSbUsUJ1rFG/g5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Generic.Dacic.666DAB24.A.6C390C3D.30544.30213.dll

Files

SecuriteInfo.com.Generic.Dacic.666DAB24.A.6C390C3D.30544.30213.dll
.dll windows x86

b64ce983d84fce30f9137da1f913d5f7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFindNextComponentW
StrCpyW
PathRemoveArgsA
SHQueryInfoKeyW
SHRegEnumUSValueA

kernel32

GetCurrentThreadId
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
CancelIo
SetProcessPriorityBoost
GetNamedPipeInfo
SignalObjectAndWait
ReadFile
SetCalendarInfoW
PeekNamedPipe
GetDiskFreeSpaceExW
Sleep
GetCurrentProcess
VirtualProtect
EnumSystemCodePagesW
K32GetProcessMemoryInfo
GetConsoleCP
FlushFileBuffers
LCMapStringEx
HeapSize
LoadLibraryW
OutputDebugStringW
GetStringTypeW
HeapReAlloc
HeapAlloc
RtlUnwind
LoadLibraryExW
GetModuleFileNameW
WriteFile
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
GetModuleHandleW
TerminateProcess
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount64
GetSystemTimeAsFileTime
QueryPerformanceCounter
HeapFree
GetModuleFileNameA
GetStartupInfoW
InitOnceExecuteOnce
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetCommandLineA
CreateFileW
EncodePointer
GetLastError
SetLastError
InterlockedIncrement
InterlockedDecrement
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
GetProcessHeap
GetStdHandle
GetFileType

mscms

CheckBitmapBits
GetPS2ColorRenderingIntent
DisassociateColorProfileFromDeviceA
ord1
GetStandardColorSpaceProfileA
SetColorProfileElementReference
TranslateBitmapBits
GetColorDirectoryA

winspool.drv

ord207
OpenPrinterW
EndPagePrinter
AddPrintProvidorA
EnumMonitorsA
EnumMonitorsW
ResetPrinterW
EnumPortsW
EnumPrinterKeyA

oleaut32

SysAllocString
VariantCopyInd
CreateDispTypeInfo
VectorFromBstr

wsock32

ord1120
gethostbyname
ntohl
WSAIsBlocking
ord1105
WSACancelAsyncRequest
ord1141
MigrateWinsockConfiguration
__WSAFDIsSet
ord1103

pdh

PdhGetFormattedCounterValue
PdhCloseQuery
PdhCollectQueryData
PdhOpenQueryA
PdhGetDefaultPerfCounterA
PdhUpdateLogFileCatalog
PdhIsRealTimeQuery
PdhOpenQueryW
PdhAddCounterW

msi

ord85
ord89
ord53
ord27
ord82
ord78

Exports

Exports

JKbtgdfd
_GetCPUUsage@0
_GetDiskIOUsage@0
_GetDiskUsage@0
_GetMemoryUsage@0
_GetNetworkUsage@0

Sections

.text
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b64ce983d84fce30f9137da1f913d5f7

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

mscms

winspool.drv

oleaut32

wsock32

pdh

msi

Exports

Exports

Sections

.text Size: 41KB - Virtual size: 40KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 10KB - Virtual size: 17KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 41KB - Virtual size: 40KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 10KB - Virtual size: 17KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 4KB - Virtual size: 3KB