easy_Benign_fff49e5b5e4f34ab13a355dd57f75285cff00bee79269b5c1f984775f3481829[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

easy_Benign_fff49e5b5e4f34ab13a355dd57f75285cff00bee79269b5c1f984775f3481829.dll
Size

22KB
MD5

451ed647fbf8db806b07633db0aa1053
SHA1

0e72625af75575b5eef2d3655bac459564060b6d
SHA256

fff49e5b5e4f34ab13a355dd57f75285cff00bee79269b5c1f984775f3481829
SHA512

be6e6012be932408a08499aad50ca7e3858f0a61dd9f639486d6059ecdc0a5cbc1973d4692bdc5e6ab69234c300cb23baa03dd6867d61eaab454a502c4898a42
SSDEEP

192:/hqZy+NSHvYQT74QbqP8jg3xlwbJgYrEKDm2sOHg5yxWZy/TeZDrr6JRWinDjg2I:/hSmwYsQ2Zxy5Df0y/TeJ6JRWALXYJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
easy_Benign_fff49e5b5e4f34ab13a355dd57f75285cff00bee79269b5c1f984775f3481829.dll

Files

easy_Benign_fff49e5b5e4f34ab13a355dd57f75285cff00bee79269b5c1f984775f3481829.dll
.dll windows x86

f15a585c8e38eb34d64d7888eba1514b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

_amsg_exit
_initterm
_iob
_lock
_unlock
abort
calloc
free
fwrite
realloc
strlen
strncmp
vfprintf

libbabl-0.1-0

babl_format

libgio-2.0-0

g_file_equal
g_file_new_for_path
g_file_new_for_uri
g_input_stream_close
g_input_stream_get_type
g_input_stream_read_all

libglib-2.0-0

g_assertion_message_expr
g_dgettext
g_error_free
g_free
g_log
g_malloc0
g_return_if_fail_warning
g_slice_alloc0
g_slice_free1
g_snprintf
g_str_equal
g_strdup
g_try_malloc

libgobject-2.0-0

g_object_class_install_property
g_object_set_data_full
g_object_unref
g_param_spec_types
g_type_check_class_cast
g_type_check_instance_cast
g_type_check_instance_is_a
g_type_class_peek_parent
g_type_module_register_type
g_type_name
g_value_dup_string
g_value_set_string

libwebp-7

WebPFreeDecBuffer
WebPGetFeaturesInternal
WebPIAppend
WebPIDelete
WebPINewDecoder
WebPInitDecoderConfigInternal

libgegl-0.4-0

gegl_buffer_set
gegl_gio_open_input_stream
gegl_operation_class_set_keys
gegl_operation_get_type
gegl_operation_handlers_register_loader
gegl_operation_set_format
gegl_operation_source_get_type
gegl_param_double_get_type
gegl_param_int_get_type
gegl_param_spec_file_path
gegl_param_spec_get_property_key
gegl_param_spec_uri

Exports

Exports

gegl_module_query
gegl_module_register

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 976B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 113B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f15a585c8e38eb34d64d7888eba1514b

Headers

File Characteristics

Imports

kernel32

msvcrt

libbabl-0.1-0

libgio-2.0-0

libglib-2.0-0

libgobject-2.0-0

libwebp-7

libgegl-0.4-0

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.data Size: 512B - Virtual size: 48B

.rdata Size: 2KB - Virtual size: 1KB

/4 Size: 3KB - Virtual size: 2KB

.bss Size: - Virtual size: 976B

.edata Size: 512B - Virtual size: 113B

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 44B

.tls Size: 512B - Virtual size: 8B

.reloc Size: 1024B - Virtual size: 800B

.text
Size: 10KB - Virtual size: 9KB

.data
Size: 512B - Virtual size: 48B

.rdata
Size: 2KB - Virtual size: 1KB

/4
Size: 3KB - Virtual size: 2KB

.bss
Size: - Virtual size: 976B

.edata
Size: 512B - Virtual size: 113B

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 44B

.tls
Size: 512B - Virtual size: 8B

.reloc
Size: 1024B - Virtual size: 800B