Magic 3[.]1[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

Magic 3.1.dll
Size

28KB
MD5

921f0d08dc0d9d1131da6e9651d06454
SHA1

1d14533af3a36cadcef37c69a871217ce8e96900
SHA256

3ac0635b2bfdc111e336475ff67870eb3fddfa39324e160621e7041d31e2523e
SHA512

5c31b7fa37348211b380ba0d148ec75a5c06c76866d427065d3b24e38121c30383154e1d6e053e2e88bd435281eeb94d5193ecf08f7f8deef21ca291666d9e25
SSDEEP

384:yQKBPklQC6kEJDNKxSlELSLF/NbKpjPQyObbfKAJYGjL0r9gNIS/q8A1OF:yrPCNEJIxSlE+VN+P8bbCA+1MHuwF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Magic 3.1.dll

Files

Magic 3.1.dll
.dll windows:6 windows x86 arch:x86

50cbc26d940aaaeb2c645858978c8e2d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

AllocConsole
FillConsoleOutputAttribute
GetConsoleScreenBufferInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleW
GetStdHandle
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
IsProcessorFeaturePresent
LoadLibraryW
QueryPerformanceCounter
SetConsoleCursorInfo
SetConsoleOutputCP
SetConsoleTextAttribute
SetConsoleTitleW
SetCurrentConsoleFontEx
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
VirtualProtect

msvcp140

?_Xout_of_range@std@@YAXPBD@Z

vcruntime140

_CxxThrowException
__std_exception_copy
__std_exception_destroy
__std_type_info_destroy_list
_except_handler4_common
memmove
memset

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

api-ms-win-crt-runtime-l1-1-0

_cexit
_configure_narrow_argv
_crt_atexit
_execute_onexit_table
_initialize_narrow_environment
_initialize_onexit_table
_initterm
_initterm_e
_invalid_parameter_noinfo_noreturn
_register_onexit_function
_seh_filter_dll

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vfwprintf
_wfreopen

api-ms-win-crt-convert-l1-1-0

atoi

api-ms-win-crt-string-l1-1-0

wcscpy

api-ms-win-crt-math-l1-1-0

cos
remainderf
roundf
sin

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50cbc26d940aaaeb2c645858978c8e2d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcp140

vcruntime140

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-math-l1-1-0

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 3KB

.00cfg Size: 512B - Virtual size: 8B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 3KB

.00cfg
Size: 512B - Virtual size: 8B

.reloc
Size: 1KB - Virtual size: 1KB