SecuriteInfo[.]com[.]Variant[.]Zusy[.]479680[.]3311[.]4857[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Zusy.479680.3311.4857.dll
Size

24KB
MD5

e2bed9d6074957b4b790d8694b7198a4
SHA1

73e48dc69e1ca12f57c4752d562431f30ebd00a4
SHA256

bb2a1a20580023a06a5d9289cbb7c1544928bf695a9b475522e79d3897c8739a
SHA512

9727f01e60a8421ff20dd6bce0311626d51db51f2c8344bbc85906ef257b30c89280bb6d596b5dc64a08f5a9b321bdb2e706550ed8ee23f65de08b3cf2445be2
SSDEEP

768:2qbvz2p8wdhYXYUt5h5mjHa7XPOiom9ZpyYjl1STBtCse/:2qbap8wdhYXYijg27WJm9ZtlcTBgR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Variant.Zusy.479680.3311.4857.dll

Files

SecuriteInfo.com.Variant.Zusy.479680.3311.4857.dll
.dll windows x86

a4dcc6b6d18fcc449f6902d126361422

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

free
__dllonexit
_adjust_fdiv
malloc
_initterm
memset
memcpy
_onexit

shlwapi

StrCatW
SHDeleteValueA
PathIsFileSpecW
PathIsURLW
SHDeleteKeyA
PathStripPathW
SHOpenRegStreamW
SHDeleteKeyW

kernel32

lstrlenW
CreateSemaphoreA
GetTimeFormatW
GetConsoleScreenBufferInfo
GetTempFileNameA
VirtualAlloc

mpr

WNetAddConnection2W
WNetCancelConnectionW
WNetConnectionDialog1W
WNetGetUserA
WNetAddConnection3A

msvfw32

GetOpenFileNamePreviewA
ICImageCompress
ICOpen

avifil32

AVIFileOpenW
AVIMakeFileFromStreams
AVIStreamSetFormat
AVIFileOpenA
EditStreamClone

gdi32

GetFontAssocStatus
SetBitmapDimensionEx
SetViewportExtEx
Chord
EudcLoadLinkW
GdiEndDocEMF
SetRelAbs
GetTextExtentPoint32W
GetDeviceGammaRamp

odbc32

ord30
ord2
ord35
ord32
ord38
ord127
ord23

Exports

Exports

HvTkcoed

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE