5ECCC71C7FFA22A1C9F0F0163B99146F[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

5ECCC71C7FFA22A1C9F0F0163B99146F.dll
Size

6.1MB
MD5

5eccc71c7ffa22a1c9f0f0163b99146f
SHA1

334493427801f40934306110515746b2bd552a3d
SHA256

0e8550168e25374d68bbbdd316742bf6e1b98de98c8054b2f0e7aef59d96e083
SHA512

470c09265a7c98c110b26e09d8d30c3376b7b74b45ef409e820ed7dede77df066f17e5e030cc9c44c577d3921724b6954771663e4485ea37f31e82635de1dbdf
SSDEEP

98304:ckpzpW/o77Hj6bHwtGgeT0dBkXbc5b+e02TUQECV9f4H1K0oxuWqAXy4LYYchLq8:x2WTjKwO0dbtSQr9fdPy9YcVq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ECCC71C7FFA22A1C9F0F0163B99146F.dll

Files

5ECCC71C7FFA22A1C9F0F0163B99146F.dll
.dll windows:6 windows x86

77ca10b1fb9991c9791f35720d14d085

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersionExW
GetFileAttributesW
GetModuleFileNameW
CreateFileW
ReadConsoleW
WriteConsoleW
SetStdHandle
OutputDebugStringW
LoadLibraryExW
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
CloseHandle
WriteFile
GetUserDefaultLangID
SetCommBreak
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetOEMCP
GetACP
IsValidCodePage
GetFileType
GetStdHandle
GetProcessHeap
HeapSize
AreFileApisANSI
GetModuleHandleExW
ExitProcess
EnumSystemLocalesW
GetLocaleInfoW
LCMapStringW
CompareFileTime
SetEndOfFile
GetEnvironmentVariableW
GetTimeZoneInformation
SwitchToThread
SuspendThread
TlsAlloc
WinExec
IsDebuggerPresent
GetLocalTime
ResetEvent
RaiseException
MulDiv
IsValidLocale
GetProcessTimes
GetPrivateProfileStringW
FreeEnvironmentStringsW
GetCurrentThread
GetFullPathNameW
GetUserDefaultLCID
InitializeSListHead
FindResourceW
SetFilePointer
GetEnvironmentStringsW
GetProcAddress
GetModuleHandleW
WideCharToMultiByte
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapFree
HeapReAlloc
GetCommandLineA
GetCurrentThreadId
RtlUnwind
GetCPInfo
HeapAlloc
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW

user32

GetMenu
SetWindowsHookExA
DestroyCursor
GetSysColor
SystemParametersInfoA
SetWindowTextA
SetCursor
SetClassLongA
CheckRadioButton
EndPaint
CharUpperBuffW
TrackPopupMenu
IsIconic
IsZoomed
SetPropA
AttachThreadInput
DrawEdge
GetMenuItemInfoW
ModifyMenuW
EnumWindows
GetQueueStatus
GetScrollInfo
MessageBoxA
EndDialog
DefWindowProcA
CheckDlgButton
IsDlgButtonChecked
EnableScrollBar
PostMessageA
MessageBoxW
EnableWindow
GetDlgItemTextA
ToUnicode
ValidateRect
GetKeyState

gdi32

StretchDIBits
GetStockObject
GdiFlush
TranslateCharsetInfo
GetWindowOrgEx
CopyEnhMetaFileA
DeleteObject
PolyPolyline
CombineRgn
GetCharABCWidthsW
CreateRectRgn
GetSystemPaletteEntries
Polyline
CreateDIBitmap
EndDoc
CloseEnhMetaFile
CreateHalftonePalette

advapi32

EqualSid
RegOpenKeyExW
RegSetKeySecurity
SetSecurityDescriptorOwner
StartServiceW

shell32

Shell_NotifyIconW

oleaut32

SysReAllocStringLen

Sections

.text
Size: 436KB - Virtual size: 436KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.6MB - Virtual size: 5.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77ca10b1fb9991c9791f35720d14d085

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

Sections

.text Size: 436KB - Virtual size: 436KB

.data Size: 5.6MB - Virtual size: 5.6MB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 436KB - Virtual size: 436KB

.data
Size: 5.6MB - Virtual size: 5.6MB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 12KB - Virtual size: 11KB