5f5c3ca52798683fff573ff73853953dea02cb6c6d9d6fb76570b0a0c19f8202[.]dll[.]000[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

5f5c3ca52798683fff573ff73853953dea02cb6c6d9d6fb76570b0a0c19f8202.dll.000.exe
Size

1.5MB
MD5

4afcd8e7269b8f8e3947373f2c48654d
SHA1

427c46d4cbbd1eb2bf406a5c0d4ed550ecb4c094
SHA256

5f5c3ca52798683fff573ff73853953dea02cb6c6d9d6fb76570b0a0c19f8202
SHA512

73aa872258fa77dcf85f3b3b56e48ef8e17804f0404fb7b41d412e7c35ccb6fadbe81e91e167f322073d621129acbd2de145b6e19526ee8dbc24151ddc59128e
SSDEEP

49152:tJt2LGgHZNlLi+wiW+CqeSb5VFI7xtDCzcQ38h:tn2LNZNl0l9rSbMh4W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f5c3ca52798683fff573ff73853953dea02cb6c6d9d6fb76570b0a0c19f8202.dll.000.exe

Files

5f5c3ca52798683fff573ff73853953dea02cb6c6d9d6fb76570b0a0c19f8202.dll.000.exe
.dll windows x64

432ad2511bfe7273c7f761e11ce33afd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

msvcr100

_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
free
_initterm_e
_initterm
_malloc_crt
getenv
memset
setlocale
_wchdir

kernel32

CloseHandle
LocalAlloc
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
DecodePointer
EncodePointer
GetProcessHeap
HeapAlloc
HeapFree
lstrcpyW
Sleep
WaitForSingleObject
GetExitCodeProcess
FreeLibrary
GetProcAddress
LoadLibraryA
GetLastError
LoadLibraryW
GetTempPathW
GetSystemDirectoryW
lstrlenW
lstrcpynW
lstrcmpiW
GetSystemWindowsDirectoryW
GetCurrentProcessId
DeleteFileW
RaiseException
CreateFileW
SetFileAttributesW
GetFileAttributesW
GetCurrentDirectoryW
GetModuleFileNameW
lstrcatW
FileTimeToLocalFileTime
FindClose
FindFirstFileW
CreateDirectoryW
SetFileTime
LocalFileTimeToFileTime
WriteFile
GetTempFileNameW
MoveFileExW
CopyFileW

Exports

Exports

correo_enviar_email_con_fichero_adjunto
sendemail_carga_sendemail
sendemail_crea_bat_para_enviar_correo
sendemail_enviar_correo
sendemail_enviar_correo_u
sendmail_exe_datos

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

432ad2511bfe7273c7f761e11ce33afd

Headers

DLL Characteristics

File Characteristics

Imports

msvcr100

kernel32

Exports

Exports

Sections

.text Size: 34KB - Virtual size: 34KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 1.5MB - Virtual size: 1.5MB

.pdata Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 588B

.text
Size: 34KB - Virtual size: 34KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 1.5MB - Virtual size: 1.5MB

.pdata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 588B