e32b5d582a1ab3e2c26694b1c4012919[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

e32b5d582a1ab3e2c26694b1c4012919.dll
Size

2.7MB
MD5

e32b5d582a1ab3e2c26694b1c4012919
SHA1

37a66b1061dcc206b18d5e13a56432e718d76467
SHA256

a65b0d905b0b9185bb2c10685b9b8c5c6adef91e5bc9b67c2e8ca48586181ee6
SHA512

d017818aba5fa8c221b93648ef670ac3a32a543a9b7382cedffe4f8fae1cb230a6cffb410d51aa56f174ca49a4f1839ba05792d6e9c4104503295efc91a61aab
SSDEEP

49152:Uh64pOn7hFOsd2/PEvx8QeGzKV34SP+mmtYZQsUBlCghXRb:M64I3ROPCHe+KJ46xsBlH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e32b5d582a1ab3e2c26694b1c4012919.dll

Files

e32b5d582a1ab3e2c26694b1c4012919.dll
.dll windows:5 windows x86

2a4ee8127744573b9b8c303959a21438

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shell32

Shell_NotifyIconW

ws2_32

select
WSAGetLastError

advapi32

OpenBackupEventLogA
CryptCreateHash

user32

ShowWindow
DefWindowProcA

kernel32

GetModuleHandleA
CloseHandle
GetBinaryTypeA
GetModuleFileNameA
GetSystemTimeAsFileTime
DeleteCriticalSection
SetEvent
LeaveCriticalSection
EnterCriticalSection
GetExitCodeProcess

setupapi

SetupDiDestroyDeviceInfoList

lz32

LZInit

wintrust

CryptCATCDFEnumMembers

oleaut32

SafeArrayCreate

gdi32

PtInRegion
SetSystemPaletteUse

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 296KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4E7
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CRT
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt0
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a4ee8127744573b9b8c303959a21438

Headers

File Characteristics

Imports

shell32

ws2_32

advapi32

user32

kernel32

setupapi

lz32

wintrust

oleaut32

gdi32

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 296KB - Virtual size: 293KB

4E7 Size: 1.2MB - Virtual size: 1.2MB

CRT Size: 28KB - Virtual size: 26KB

.crt0 Size: 1.0MB - Virtual size: 1.0MB

.rsrc Size: 4KB - Virtual size: 1008B

.reloc Size: 68KB - Virtual size: 67KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 296KB - Virtual size: 293KB

4E7
Size: 1.2MB - Virtual size: 1.2MB

CRT
Size: 28KB - Virtual size: 26KB

.crt0
Size: 1.0MB - Virtual size: 1.0MB

.rsrc
Size: 4KB - Virtual size: 1008B

.reloc
Size: 68KB - Virtual size: 67KB