SecuriteInfo[.]com[.]Variant[.]Razy[.]969857[.]25186[.]6155[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Razy.969857.25186.6155.dll
Size

1.6MB
MD5

d9649126e11df5526521f6ae38f076c4
SHA1

1c6a9f4df126580007d813d06ec0efc908351996
SHA256

8d1048fed38e75f78d68750772eb632ccca15251dc8bd0a24981516f3d154717
SHA512

c4e2122ca03ce2b45a6f932d2b659c6d9501a7afdbad3559c04df3a9f86048b78024aa9ac04c63f1320cdaa86f5c3d8bd649c9091f23288d46c17d807acc3df1
SSDEEP

49152:QVlf4p3BCLj5f8TCOtTj8ah9e2bt28nQ:V2Lj58Rr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Variant.Razy.969857.25186.6155.dll

Files

SecuriteInfo.com.Variant.Razy.969857.25186.6155.dll
.dll regsvr32 windows:5 windows x86 arch:x86

2cb4f0c7dff618f49177af00f1358e7a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EncodePointer
EnterCriticalSection
LeaveCriticalSection
FreeLibrary
GetProcAddress
SetErrorMode
Sleep
LoadLibraryW
GetModuleFileNameW
CreateThread
LoadLibraryA
LoadLibraryExW
GetModuleHandleW
GetModuleHandleExW
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
RaiseException
LocalFree
FindClose
CreateFileW
CloseHandle
SetEndOfFile
WriteConsoleW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
GetTimeZoneInformation
SetStdHandle
GetFullPathNameW
GetCurrentDirectoryW
InterlockedIncrement
InterlockedDecrement
DecodePointer
OutputDebugStringW
InitializeSListHead
SetFilePointerEx
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
ReadConsoleW
GetConsoleMode
GetConsoleCP
WriteFile
FlushFileBuffers
GetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetACP
GetModuleFileNameA
ExitProcess
ReadFile
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
IsProcessorFeaturePresent
GetDriveTypeW
InterlockedFlushSList
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW
SetLastError
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
CompareStringW
LCMapStringW
GetLocaleInfoW
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlUnwind

user32

GetClassNameW
SendMessageW
IsWindow
OpenClipboard
CloseClipboard
GetClipboardData
IsClipboardFormatAvailable
keybd_event
GetWindowTextW
PostMessageW
EnumThreadWindows
EnumWindows

shell32

ShellExecuteW
ShellExecuteA

ole32

CoCreateInstance

oleaut32

VariantClear
VariantInit
SysAllocString
SysFreeString

gdiplus

GdipGetImageEncoders
GdipAlloc
GdipFree
GdiplusStartup
GdiplusShutdown
GdipCloneImage
GdipDisposeImage
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllInstall
DllRegisterServer
DllUnregisterServer
NP_GetEntryPoints
NP_GetMIMEDescription
NP_Initialize
NP_Shutdown

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 199KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gshare
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cb4f0c7dff618f49177af00f1358e7a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

ole32

oleaut32

gdiplus

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 199KB - Virtual size: 199KB

.data Size: 8KB - Virtual size: 26KB

gshare Size: 512B - Virtual size: 1B

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 50KB - Virtual size: 49KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 199KB - Virtual size: 199KB

.data
Size: 8KB - Virtual size: 26KB

gshare
Size: 512B - Virtual size: 1B

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 50KB - Virtual size: 49KB