easy_Benign_ffc4c88954ee219d136409548db4a6e47470654f2de5ef535ca826e7fcaa2104[.]dll

General

Target

easy_Benign_ffc4c88954ee219d136409548db4a6e47470654f2de5ef535ca826e7fcaa2104.dll
Size

6KB
MD5

2d48422a07c2667fc4840b4339056ab6
SHA1

fa98c3af46cc738507668605f1a7007594820dd3
SHA256

ffc4c88954ee219d136409548db4a6e47470654f2de5ef535ca826e7fcaa2104
SHA512

0d2270885423f14f11aac7ae0153bfcf9846663a6114a1a220285008b3e4b4f75e9ac78a67f9d1aaf465ddfeeac8c3b08a02f4bfe82381c04b27c323ac1f3afc
SSDEEP

96:jGCVNttB/YPUwDszP2kFdRXdg3XLPVAAD6XsY8t:jGCZ3U9mtFd9dg3XLPVlD67E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
easy_Benign_ffc4c88954ee219d136409548db4a6e47470654f2de5ef535ca826e7fcaa2104.dll

Files

easy_Benign_ffc4c88954ee219d136409548db4a6e47470654f2de5ef535ca826e7fcaa2104.dll
.dll windows x86

371f657a5c4bc7819591a86bc7886608

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

libapriconv-1

apr_iconv_iso2022_open
apr_iconv_iso2022_close
apr_iconv_iso2022_reset
apr_iconv_ces_nbits7
apr_iconv_ces_zero
apr_iconv_iso2022_convert_from_ucs
apr_iconv_iso2022_convert_to_ucs
apr_iconv_mod_noevent

msvcr100

_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_crt_debugger_hook
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
free
_malloc_crt
__clean_type_info_names_internal

kernel32

IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer
EncodePointer
GetTickCount

Exports

Exports

iconv_module

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

371f657a5c4bc7819591a86bc7886608

Headers

DLL Characteristics

File Characteristics

Imports

libapriconv-1

msvcr100

kernel32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 880B

.reloc Size: 512B - Virtual size: 396B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 880B

.reloc
Size: 512B - Virtual size: 396B