7cff46015d598f660ece328db56effcb[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

7cff46015d598f660ece328db56effcb.dll
Size

2.5MB
MD5

7cff46015d598f660ece328db56effcb
SHA1

928a78db56ba95e881559697cf5dcffe30ae58a7
SHA256

ecffedcfbe3fd35d9d1f7af13e619ae6a5bf7c87259afac006fea7771fdf3c87
SHA512

8a272eb2823b1fd58620a440fd077f6e2135426db8e998f914fdb162bbeda367b42566693bbf8f71b0a915d5291eea5bcfe0e4e117c3b8333a6b8d866915e51e
SSDEEP

49152:BdubI9C9/wFDCdJOIFOLFeiv/qOi5CVxQWGavn:BU+hDCqI83k4LNvn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7cff46015d598f660ece328db56effcb.dll

Files

7cff46015d598f660ece328db56effcb.dll
.dll windows:5 windows x86

cbad123f0927fe971a43f41c1f8c20cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

rasapi32

RasGetAutodialAddressA

kernel32

GetModuleFileNameA
GetModuleHandleW
OutputDebugStringA
SetStdHandle
InterlockedPushEntrySList
GetSystemTimeAsFileTime
LoadLibraryExW
VerLanguageNameA
GetBinaryTypeA

wininet

FindFirstUrlCacheEntryExA

wintrust

CryptCATPutAttrInfo

psapi

GetModuleInformation

winmm

GetDriverModuleHandle
mmioOpenW

gdi32

DeleteDC
EndPath

shlwapi

StrRStrIW

shell32

SHGetSpecialFolderPathA
SHEnumerateUnreadMailAccountsW

winspool.drv

AddPrinterDriverW

msvcrt

putc
localeconv

urlmon

MkParseDisplayNameEx

user32

GetUpdateRgn
SendMessageW
MapWindowPoints
TrackMouseEvent
GetMenuItemCount
SendMessageTimeoutA
GetCapture
SetSysColors
CheckRadioButton

clusapi

ClusterResourceCloseEnum

ole32

HGLOBAL_UserUnmarshal

rpcrt4

I_RpcSend

lz32

GetExpandedNameW

advapi32

SetThreadToken
RegSaveKeyW

oleaut32

SafeArrayDestroyDescriptor

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cbad123f0927fe971a43f41c1f8c20cf

Headers

File Characteristics

Imports

rasapi32

kernel32

wininet

wintrust

psapi

winmm

gdi32

shlwapi

shell32

winspool.drv

msvcrt

urlmon

user32

clusapi

ole32

rpcrt4

lz32

advapi32

oleaut32

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 2.3MB - Virtual size: 2.3MB

.data Size: 36KB - Virtual size: 35KB

.rsrc Size: 4KB - Virtual size: 1008B

.reloc Size: 16KB - Virtual size: 12KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 2.3MB - Virtual size: 2.3MB

.data
Size: 36KB - Virtual size: 35KB

.rsrc
Size: 4KB - Virtual size: 1008B

.reloc
Size: 16KB - Virtual size: 12KB