61640a1f8ad6070c9c6ef1e8e47f9326f769c08083319029cc05791b35c60d57

Sharing

Copy URL

Twitter E-mail

General

Target

61640a1f8ad6070c9c6ef1e8e47f9326f769c08083319029cc05791b35c60d57
Size

8.7MB
MD5

83f659da2c538df2ad09826672c08ebc
SHA1

10db47b20a726f508d64592987d0681e2ca42f61
SHA256

61640a1f8ad6070c9c6ef1e8e47f9326f769c08083319029cc05791b35c60d57
SHA512

606b6f9e0acf4d06a5a782ee5dc5d2bd38b9241bad0b0d6d0d407e9d93a27ac643bcb5a2014dadc82dd2135d00f2c41eaf682171a7a1af456cddcbcb9dc11469
SSDEEP

196608:WYdx1JpIgFoAyCw1Qja8cPjMZ90IAVzoGtvfJ:WgJPFoA1+UBcPwMV00

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61640a1f8ad6070c9c6ef1e8e47f9326f769c08083319029cc05791b35c60d57

Files

61640a1f8ad6070c9c6ef1e8e47f9326f769c08083319029cc05791b35c60d57
.dll windows:5 windows x64

c45eb504503c1f0671d7ca31aad8035c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

libufun

UF_initialize

libugopenint

UF_UI_set_sel_type

kernel32

WideCharToMultiByte

user32

ToAsciiEx

gdi32

GetObjectA

msimg32

AlphaBlend

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter

advapi32

RegEnumKeyExA

shell32

SHGetPathFromIDListA

comctl32

_TrackMouseEvent

shlwapi

PathFindFileNameA

ole32

CoSetProxyBlanket

oleaut32

VariantTimeToSystemTime

gdiplus

GdiplusStartup

udo_64bit

?FEATUREUDO_ask_TestUdo_class@@YAIXZ

setupapi

SetupDiDestroyDeviceInfoList

pskernel

PK_BODY_create_solid_sphere

version

GetFileVersionInfoSizeA

vmprotectsdk64

VMProtectBegin

ws2_32

htons
WSAStartup

iphlpapi

GetAdaptersInfo
GetAdaptersInfo

oleacc

CreateStdAccessibleObject

imm32

ImmReleaseContext

winmm

PlaySoundA

slm_runtime_windows_x64

ord1

Sections

.text
Size: - Virtual size: 11.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 461KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 218KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

text
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE

data
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mark
Size: - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdata
Size: - Virtual size: 330KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 8.3MB - Virtual size: 8.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 330KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c45eb504503c1f0671d7ca31aad8035c

Headers

DLL Characteristics

File Characteristics

Imports

libufun

libugopenint

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

gdiplus

udo_64bit

setupapi

pskernel

version

vmprotectsdk64

ws2_32

iphlpapi

oleacc

imm32

winmm

slm_runtime_windows_x64

Sections

.text Size: - Virtual size: 11.3MB

.rdata Size: - Virtual size: 1.6MB

.data Size: - Virtual size: 461KB

.pdata Size: - Virtual size: 218KB

text Size: - Virtual size: 5KB

data Size: - Virtual size: 11KB

.mark Size: - Virtual size: 336B

.vdata Size: - Virtual size: 330KB

.text Size: - Virtual size: 2.8MB

.data Size: - Virtual size: 191KB

.text Size: 8.3MB - Virtual size: 8.3MB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 512B - Virtual size: 72B

.rsrc Size: 330KB - Virtual size: 329KB

.text
Size: - Virtual size: 11.3MB

.rdata
Size: - Virtual size: 1.6MB

.data
Size: - Virtual size: 461KB

.pdata
Size: - Virtual size: 218KB

text
Size: - Virtual size: 5KB

data
Size: - Virtual size: 11KB

.mark
Size: - Virtual size: 336B

.vdata
Size: - Virtual size: 330KB

.text
Size: - Virtual size: 2.8MB

.data
Size: - Virtual size: 191KB

.text
Size: 8.3MB - Virtual size: 8.3MB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 512B - Virtual size: 72B

.rsrc
Size: 330KB - Virtual size: 329KB