Binary[.]CPWLHxpA[.]dll

Resubmissions

22/08/2023, 18:11

230822-wstmjafg7v 3

22/08/2023, 18:09

230822-wrxykaec86 3

22/08/2023, 18:06

230822-wpxvsafg6x 5

Sharing

Copy URL Twitter E-mail

General

Target

Binary.CPWLHxpA.dll
Size

5.6MB
MD5

1669dc15266c4336499eceefe7f9d157
SHA1

7296e40ad12f1fc0bacbee66199819fa034d41b4
SHA256

fed4c8d6bd9066d07dbb63cadf51fe3d32712256b76a645bbf95527fe227d82d
SHA512

49de51cf3a458fdc5c54454dd81998429ad8998f8a9501d17bfc079705b83b8c26b99412c5be4115f29bffd2c88c5fddcc66b349cd68de712451688d189bd1d0
SSDEEP

98304:SGWdi/3Srb7achAzgpDP/mcrdpTsrvxhzMT08tpEa4K4uFlghiaXjsfONDv/8yZe:edqSr3aEpDP/mcr/TYphq8jeldNmzNTe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Binary.CPWLHxpA.dll

Files

Binary.CPWLHxpA.dll
.dll windows x86

26743bd67965998be9966d88940cc6ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

comctl32

FlatSB_SetScrollInfo

shell32

Shell_NotifyIconW

user32

CopyImage

version

GetFileVersionInfoSizeW

oleaut32

SafeArrayPutElement

advapi32

RegEnumKeyExW

netapi32

NetWkstaGetInfo

msvcrt

memcpy

winhttp

WinHttpGetIEProxyConfigForCurrentUser

kernel32

GetVersion
GetVersionExW
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

ole32

CreateBindCtx

gdi32

Pie

Exports

Exports

OQmqXZVZk
TMethodImplementationIntercept
__dbk_fcall_wrapper
dbkFCallWrapperAddr

Sections

Tkt[(Dqs
Size: - Virtual size: 6.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

;Fu/;VVB
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

iB?5/u6&
Size: - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3z:+wMeT
Size: - Virtual size: 32KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

>%a3Y&,+
Size: - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3>^>!8no
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0<0$hm6A
Size: - Virtual size: 174B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

V&Y/#+)%
Size: - Virtual size: 69B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

3/(C<B9x
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

%drzOY`T
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/i2e:=)W
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

aGepz743
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

q<g.IUp%
Size: 8KB - Virtual size: 430KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

26743bd67965998be9966d88940cc6ad

Headers

File Characteristics

Imports

comctl32

shell32

user32

version

oleaut32

advapi32

netapi32

msvcrt

winhttp

kernel32

ole32

gdi32

Exports

Exports

Sections

Tkt[(Dqs Size: - Virtual size: 6.5MB

;Fu/;VVB Size: - Virtual size: 18KB

iB?5/u6& Size: - Virtual size: 87KB

3z:+wMeT Size: - Virtual size: 32KB

>%a3Y&,+ Size: - Virtual size: 14KB

3>^>!8no Size: - Virtual size: 8KB

0<0$hm6A Size: - Virtual size: 174B

V&Y/#+)% Size: - Virtual size: 69B

3/(C<B9x Size: - Virtual size: 1.7MB

%drzOY`T Size: 3KB - Virtual size: 3KB

/i2e:=)W Size: 5.5MB - Virtual size: 5.5MB

aGepz743 Size: 7KB - Virtual size: 6KB

q<g.IUp% Size: 8KB - Virtual size: 430KB

Tkt[(Dqs
Size: - Virtual size: 6.5MB

;Fu/;VVB
Size: - Virtual size: 18KB

iB?5/u6&
Size: - Virtual size: 87KB

3z:+wMeT
Size: - Virtual size: 32KB

>%a3Y&,+
Size: - Virtual size: 14KB

3>^>!8no
Size: - Virtual size: 8KB

0<0$hm6A
Size: - Virtual size: 174B

V&Y/#+)%
Size: - Virtual size: 69B

3/(C<B9x
Size: - Virtual size: 1.7MB

%drzOY`T
Size: 3KB - Virtual size: 3KB

/i2e:=)W
Size: 5.5MB - Virtual size: 5.5MB

aGepz743
Size: 7KB - Virtual size: 6KB

q<g.IUp%
Size: 8KB - Virtual size: 430KB