e15b61641f69fdeee501f4249c14df60_dll32_JC[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

e15b61641f69fdeee501f4249c14df60_dll32_JC.dll
Size

406KB
MD5

e15b61641f69fdeee501f4249c14df60
SHA1

9dc769dda088d3aa832cb26bfd03b8be3ad1bd71
SHA256

94f437fded274efe760b03818bef99f35d73ef0f597ff7085d66bf9a539524bd
SHA512

c12aa40210e3f4d5421e04ff842c63cdb51e3df0ccc85caf8d7bc74c14ce72a32c6e357e74e5fa5eb3b8fb68e32fd5ccf5f3168c2a26eb1550c066f6199e9f01
SSDEEP

6144:fSjwhbB+Mgl+d95npeLMW9LbtMDRhcpOZyr6pAtpjIXYL04tf6/2cBZwi6Yldy:fdhd+5lqUMWZCWpOZyepAN44d6FZ7hl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e15b61641f69fdeee501f4249c14df60_dll32_JC.dll

Files

e15b61641f69fdeee501f4249c14df60_dll32_JC.dll
.dll windows:6 windows x86

6ec1b6b05b219bb02c165a7efc6c6592

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetModuleHandleA
GetProcAddress
GetCurrentDirectoryA
GetTempPathA
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeSListHead

vcruntime140

_except_handler4_common
__std_type_info_destroy_list
_purecall
__std_terminate
__std_exception_copy
memset
memcpy
__RTDynamicCast
__CxxFrameHandler3
_CxxThrowException
strstr
__std_exception_destroy

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_cexit
_seh_filter_dll
_errno
_configure_narrow_argv
_initterm
_initterm_e
_invalid_parameter_noinfo

api-ms-win-crt-string-l1-1-0

strcspn
isdigit
isprint
isalpha
strspn

api-ms-win-crt-convert-l1-1-0

atof
atoi

api-ms-win-crt-filesystem-l1-1-0

rename
remove
_stat64i32

api-ms-win-crt-stdio-l1-1-0

_sopen_dispatch
__stdio_common_vsscanf
_close
__stdio_common_vsprintf_s

api-ms-win-crt-heap-l1-1-0

free
_callnewh
malloc

Exports

Exports

BIBUtilsGetVersion
BIBUtilsInitialize
BIBUtilsTerminate

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 258KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ec1b6b05b219bb02c165a7efc6c6592

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

Exports

Exports

Sections

.text Size: 102KB - Virtual size: 102KB

.rdata Size: 39KB - Virtual size: 39KB

.data Size: 3KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 258KB - Virtual size: 260KB

.text
Size: 102KB - Virtual size: 102KB

.rdata
Size: 39KB - Virtual size: 39KB

.data
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 258KB - Virtual size: 260KB