8a88abe3d1aac8bf51ef219e9ea07e5ed331a070a8e784791c32b9a8cf1a58a6

Sharing

Copy URL Twitter E-mail

General

Target

8a88abe3d1aac8bf51ef219e9ea07e5ed331a070a8e784791c32b9a8cf1a58a6
Size

76KB
MD5

0e172f89f5a66cc0270b40d1481abacc
SHA1

56fcb3237dd54f276d5d6313b5e129bb8a36bd8a
SHA256

8a88abe3d1aac8bf51ef219e9ea07e5ed331a070a8e784791c32b9a8cf1a58a6
SHA512

d1d9c3f9f49726cc0034f4a65047ec3ba163cdb928685cf41433c72ac08751745f99302f6ed1e0e459e4abad0329ce5aca5e6ec923c726c5264e47ecbd8a8098
SSDEEP

1536:8t0oP629ldnVRKUzr8es3fsdNRqxNwrNOfmNzfUfz1Nxfpg9DHM9fSh92C0IhIPo:5Y5RKUv8es3fsdNRqxNwrNOfmNzfUfzh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a88abe3d1aac8bf51ef219e9ea07e5ed331a070a8e784791c32b9a8cf1a58a6

Files

8a88abe3d1aac8bf51ef219e9ea07e5ed331a070a8e784791c32b9a8cf1a58a6
.dll windows x86

4033202dba2b4959303029ae2aacfff7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

python311_d

PyLong_AsSsize_t
PyBool_FromLong
PyMemoryView_FromMemory
PyMemoryView_FromBuffer
PyMemoryView_GetContiguous
PyTuple_New
PyList_New
PySlice_Unpack
PySlice_AdjustIndices
PyErr_SetString
PyErr_Occurred
PyErr_NoMemory
PyErr_Format
_PyArg_ParseTuple_SizeT
_PyArg_ParseTupleAndKeywords_SizeT
_Py_BuildValue_SizeT
PyModule_AddObject
PyModule_AddIntConstant
_Py_Dealloc
PyLong_AsLong
PyObject_CallObject
_PyObject_CallFunction_SizeT
PyObject_CallFunctionObjArgs
PyIndex_Check
PySequence_Size
PyType_Type
_Py_RefTotal
_Py_NoneStruct
_Py_FalseStruct
_Py_TrueStruct
PyFloat_Type
_Py_EllipsisObject
PySlice_Type
PyExc_BufferError
PyExc_IndexError
PyExc_RuntimeError
PyExc_TypeError
PyExc_ValueError
_Py_NegativeRefcount
PyLong_FromSsize_t
PyLong_FromSize_t
PyLong_FromLong
PyUnicode_AsASCIIString
PyUnicode_FromString
PyBytes_FromStringAndSize
_PyObject_New
PyImport_ImportModule
PyObject_Free
PyObject_Hash
PyObject_GetAttrString
PyType_IsSubtype
PyBuffer_Release
PyBuffer_IsContiguous
PyBuffer_ToContiguous
PyBuffer_GetPointer
PyObject_GetBuffer
PyObject_CheckBuffer
PyMem_Free
PyMem_Realloc
PyMem_Malloc
PyModule_Create2
PyObject_GenericGetAttr

vcruntime140d

memset
__current_exception_context
__current_exception
__std_type_info_destroy_list
memmove
memcpy
memcmp
_except_handler4_common

ucrtbased

_cexit
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
terminate
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_wassert
_initialize_onexit_table

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW

Exports

Exports

PyInit__testbuffer

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 270B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4033202dba2b4959303029ae2aacfff7

Headers

DLL Characteristics

File Characteristics

Imports

python311_d

vcruntime140d

ucrtbased

kernel32

Exports

Exports

Sections

.text Size: 49KB - Virtual size: 49KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 3KB

.00cfg Size: 512B - Virtual size: 270B

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 49KB - Virtual size: 49KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 3KB

.00cfg
Size: 512B - Virtual size: 270B

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 3KB - Virtual size: 3KB