7969db963eff6653cc66f6d223f46b9cc73a3fa24e5faee22a03e6d80a70c7df

General

Target

7969db963eff6653cc66f6d223f46b9cc73a3fa24e5faee22a03e6d80a70c7df
Size

11KB
MD5

9f2df32234024d8c4ea758154e1bfea8
SHA1

31bea89b5f8a5ed3b0f8f1617be4d7439811df95
SHA256

7969db963eff6653cc66f6d223f46b9cc73a3fa24e5faee22a03e6d80a70c7df
SHA512

afd81b0c95ced4d230e2a9c18f78d4d816703b980b109f35743280d8a9b97083404f83a45b0bf2eefc62a7b29b6e1985ddb9430344baea78105e188910cdb930
SSDEEP

192:nnPm9P9zZEvHNZlqRkWJHTJjOVGKfR7WBjJk/wUasZsY8SILZwk:PMWHB8JHVj41qByba0sjSILZwk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7969db963eff6653cc66f6d223f46b9cc73a3fa24e5faee22a03e6d80a70c7df

Files

7969db963eff6653cc66f6d223f46b9cc73a3fa24e5faee22a03e6d80a70c7df
.dll windows x86

590584db48d665d88f73885bf7fa935a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

rpcrt4

UuidCreateSequential

python310

PyErr_SetFromWindowsErr
PyEval_SaveThread
PyModule_AddIntConstant
_Py_BuildValue_SizeT
PyModuleDef_Init
PyEval_RestoreThread

vcruntime140

memset
_except_handler4_common
__std_type_info_destroy_list

api-ms-win-crt-runtime-l1-1-0

_initterm
_initialize_onexit_table
_execute_onexit_table
_initterm_e
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_cexit

kernel32

GetCurrentThreadId
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter

Exports

Exports

PyInit__uuid

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 364B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

590584db48d665d88f73885bf7fa935a

Headers

DLL Characteristics

File Characteristics

Imports

rpcrt4

python310

vcruntime140

api-ms-win-crt-runtime-l1-1-0

kernel32

Exports

Exports

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 1012B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 364B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 1012B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 364B