8daf8342b4bec6f9429378fad4746a9058445d60461fa05ec995dfe6956f836e

Sharing

Copy URL

Twitter E-mail

General

Target

8daf8342b4bec6f9429378fad4746a9058445d60461fa05ec995dfe6956f836e
Size

155KB
MD5

a0d47e70132075ec7205f7842a43440a
SHA1

5e9806bb5ac2f23192d0b6bc17a5c5241dd40030
SHA256

8daf8342b4bec6f9429378fad4746a9058445d60461fa05ec995dfe6956f836e
SHA512

119dc85dad2e1b43c19b7d5871b17f9c7e9e88f4490c817ba112cefe3101ba7f1ae9f074e5315c8eef69ade4a1e94ed61509a34462defb6c69a9330cd5449f24
SSDEEP

3072:7UcMHvP2fFFp+qDEINw30H1f72xk8EzILLh40GT9:7BMHX2fUqFU0Vf7CE5L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8daf8342b4bec6f9429378fad4746a9058445d60461fa05ec995dfe6956f836e

Files

8daf8342b4bec6f9429378fad4746a9058445d60461fa05ec995dfe6956f836e
.dll windows x86

62269f1489c348d052001e57d4428f64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetCurrentThreadId
QueryPerformanceCounter
IsProcessorFeaturePresent

python310

PyObject_Realloc
PyModuleDef_Init
PyObject_GC_Track
PyBytes_FromStringAndSize
_PyObject_MakeTpCall
PyExc_TypeError
PyType_FromModuleAndSpec
PyObject_IsTrue
PyObject_Free
_PyUnicode_Ready
PyMem_Malloc
_PyLong_AsInt
PyModule_GetState
_PyObject_GC_New
PyUnicode_FromString
PyBuffer_Release
PyErr_NoMemory
PyByteArray_Type
PyThreadState_Get
_Py_Dealloc
PyType_IsSubtype
PyModule_AddStringConstant
PyErr_Format
PyExc_ValueError
_PyArg_UnpackKeywords
_PyObject_LookupAttrId
PyMem_Free
_PyTraceback_Add
PyObject_CallFunction
PyErr_SetString
PyDict_New
PyDict_SetItem
PyCapsule_New
_Py_CheckFunctionResult
_PyArg_BadArgument
_Py_HashSecret
PyType_GetModuleState
PyUnicode_Decode
PyList_Append
PyModule_New
PyErr_NewException
PyList_New
PyObject_GetBuffer
PyUnicode_FromFormat
PyLong_AsLong
PyObject_GC_Del
PyModule_AddObject
_PyImport_SetModule
PyModule_AddObjectRef
PyDict_SetItemString
PyTuple_New
PyObject_Call
PyDescr_NewGetSet
_Py_NoneStruct
PyDict_GetItemWithError
Py_BuildValue
PyObject_GC_UnTrack
PyLong_FromLong
PyObject_SetAttrString
PyExc_RuntimeError
PyUnicode_AsUTF8AndSize
PyUnicode_DecodeUTF8
PyErr_Occurred
PyModule_AddIntConstant
PyObject_Malloc
PyBool_FromLong
PyDict_SetDefault
PyErr_SetObject
_PyByteArray_empty_string

vcruntime140

__std_type_info_destroy_list
memmove
memcpy
memset
_except_handler4_common
strrchr

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vfprintf

api-ms-win-crt-heap-l1-1-0

free
malloc
realloc

api-ms-win-crt-convert-l1-1-0

strtoul

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_errno
_cexit
_execute_onexit_table
_initialize_onexit_table
_initterm_e
_configure_narrow_argv
_seh_filter_dll
_initterm

api-ms-win-crt-utility-l1-1-0

rand_s

api-ms-win-crt-environment-l1-1-0

getenv

Exports

Exports

PyInit_pyexpat

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62269f1489c348d052001e57d4428f64

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

python310

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-environment-l1-1-0

Exports

Exports

Sections

.text Size: 118KB - Virtual size: 118KB

.rdata Size: 22KB - Virtual size: 21KB

.data Size: 3KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 118KB - Virtual size: 118KB

.rdata
Size: 22KB - Virtual size: 21KB

.data
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 8KB - Virtual size: 8KB