easy_Benign_ffec87b422275e46af4b477c88eec7cd94b1decd950df898363e8eb1c82829ac[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

easy_Benign_ffec87b422275e46af4b477c88eec7cd94b1decd950df898363e8eb1c82829ac.dll
Size

20KB
MD5

00d735ac36d37d5983cac3e8dd4132ac
SHA1

5c03183a78dfba94e6ed0cf6e411f1636580afbf
SHA256

ffec87b422275e46af4b477c88eec7cd94b1decd950df898363e8eb1c82829ac
SHA512

f574583854dfbc3c699582d1d6e74fe5d433e38e7e91ad9a79a87b93538a0ee3574a73cc1174cfecba1273b40be8ec7a27fb6bbf5166dc9cd53bc9fa73df8196
SSDEEP

192:16h+n9gkp6rmLxlbqln+0HplwbJQZ6Yr8Sm2s79BX7AneZDrrKjbx2otofFNS8Jk:wh+9IrmtlelTpRZhnKaeJKjb0U7uY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
easy_Benign_ffec87b422275e46af4b477c88eec7cd94b1decd950df898363e8eb1c82829ac.dll

Files

easy_Benign_ffec87b422275e46af4b477c88eec7cd94b1decd950df898363e8eb1c82829ac.dll
.dll windows x86

92afc0cc5f9aeac0440057edb5073139

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

_amsg_exit
_initterm
_iob
_lock
_unlock
abort
calloc
free
fwrite
realloc
strlen
strncmp
vfprintf

libbabl-0.1-0

babl_format
babl_format_get_bytes_per_pixel
babl_format_get_n_components

libgio-2.0-0

g_output_stream_get_type
g_output_stream_write_all

libglib-2.0-0

g_assertion_message_expr
g_dgettext
g_error_free
g_free
g_log
g_slice_alloc0
g_slice_free1
g_snprintf
g_str_equal
g_strdup
g_strdup_printf
g_try_malloc

libgobject-2.0-0

g_object_class_install_property
g_object_set_data_full
g_object_unref
g_param_spec_types
g_type_check_class_cast
g_type_check_instance_cast
g_type_check_instance_is_a
g_type_class_peek_parent
g_type_module_register_type
g_type_name
g_value_dup_string
g_value_set_string

libgegl-0.4-0

gegl_buffer_get
gegl_buffer_get_format
gegl_gio_open_output_stream
gegl_operation_class_set_keys
gegl_operation_get_type
gegl_operation_handlers_register_saver
gegl_operation_sink_get_type
gegl_param_double_get_type
gegl_param_int_get_type
gegl_param_spec_file_path
gegl_param_spec_get_property_key

Exports

Exports

gegl_module_query
gegl_module_register

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 976B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

92afc0cc5f9aeac0440057edb5073139

Headers

File Characteristics

Imports

kernel32

msvcrt

libbabl-0.1-0

libgio-2.0-0

libglib-2.0-0

libgobject-2.0-0

libgegl-0.4-0

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 48B

.rdata Size: 2KB - Virtual size: 1KB

/4 Size: 3KB - Virtual size: 2KB

.bss Size: - Virtual size: 976B

.edata Size: 512B - Virtual size: 112B

.idata Size: 3KB - Virtual size: 2KB

.CRT Size: 512B - Virtual size: 44B

.tls Size: 512B - Virtual size: 8B

.reloc Size: 1024B - Virtual size: 732B

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 48B

.rdata
Size: 2KB - Virtual size: 1KB

/4
Size: 3KB - Virtual size: 2KB

.bss
Size: - Virtual size: 976B

.edata
Size: 512B - Virtual size: 112B

.idata
Size: 3KB - Virtual size: 2KB

.CRT
Size: 512B - Virtual size: 44B

.tls
Size: 512B - Virtual size: 8B

.reloc
Size: 1024B - Virtual size: 732B