db62152fe9185cbd095508a15d9008b349634901d37258bc3939fe3a563b4b3c

Resubmissions

11/12/2023, 20:16

231211-y2jvsshhg6 3

11/12/2023, 20:15

11/12/2023, 20:12

11/12/2023, 20:11

11/12/2023, 20:04

11/12/2023, 19:55

Sharing

Copy URL Twitter E-mail

General

Target

db62152fe9185cbd095508a15d9008b349634901d37258bc3939fe3a563b4b3c
Size

887KB
MD5

4ff6e444bab378ee410eef38ccb7ba96
SHA1

701127ca2c17f9d0a0a5a08e8147120f8b5a7c4d
SHA256

db62152fe9185cbd095508a15d9008b349634901d37258bc3939fe3a563b4b3c
SHA512

f85d9a8c01e2acc562e613e580cb244873f65c41660246493401b394c86d1e39ecda44ab8d1c27de9077d99b7060c6bc837a7b1ee25d7c76e0d590dcd8b39ce7
SSDEEP

12288:GBuNeCCvh9YPkgSoV0k49LsTDyHaQ/eTwH0F1Q2Nxkccp+n0bPKJDnx:GMeCUhKPjVT2HaOew0F1tNxKrox

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db62152fe9185cbd095508a15d9008b349634901d37258bc3939fe3a563b4b3c

Files

db62152fe9185cbd095508a15d9008b349634901d37258bc3939fe3a563b4b3c
.dll regsvr32 windows:6 windows x64 arch:x64

9e5e8edf831883a3a19377dac4723e85

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

msvcrt

??1type_info@@UEAA@XZ
_onexit
_lock
_unlock
?terminate@@YAXXZ
_amsg_exit
_initterm
_XcptFilter
__CxxFrameHandler3
_CxxThrowException
__C_specific_handler
memcpy_s
??0exception@@QEAA@AEBV0@@Z
??0exception@@QEAA@AEBQEBD@Z
??0exception@@QEAA@XZ
??1exception@@UEAA@XZ
?what@exception@@UEBAPEBDXZ
_wstrtime
memmove_s
memcmp
_purecall
memset
memcpy
free
_callnewh
malloc
__dllonexit
_vsnwprintf

ole32

StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CoCreateGuid
CoInitializeEx
CoCreateInstance

oleaut32

VariantClear
SafeArrayAccessData
VariantCopy
SafeArrayDestroyData
SafeArrayUnaccessData

kernel32

VirtualProtect
RtlDeleteFunctionTable
SetLastError
InitializeCriticalSectionAndSpinCount
RtlInstallFunctionTableCallback
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
OutputDebugStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
Sleep
GetVersion
ExitThread
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
GetTickCount64
CreateThread
GetTickCount
GetProcAddress
VirtualAlloc
GetCurrentThreadId
GetCurrentProcess
OutputDebugStringW
InitializeCriticalSection
RaiseException
DeleteCriticalSection
GetVersionExW
DisableThreadLibraryCalls
lstrlenW
MultiByteToWideChar
lstrlenA
GetLastError
GetModuleFileNameA
FreeLibrary
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
lstrcmpW
CloseHandle
CreateEventW
SetEvent
ResetEvent
WaitForSingleObject
GetSystemInfo
VirtualFree

advapi32

RegCreateKeyW
RegSetValueW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 615KB - Virtual size: 614KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

9e5e8edf831883a3a19377dac4723e85

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

ole32

oleaut32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 217KB - Virtual size: 216KB

.rdata Size: 39KB - Virtual size: 39KB

.data Size: 2KB - Virtual size: 14KB

.pdata Size: 11KB - Virtual size: 10KB

.rsrc Size: 615KB - Virtual size: 614KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 217KB - Virtual size: 216KB

.rdata
Size: 39KB - Virtual size: 39KB

.data
Size: 2KB - Virtual size: 14KB

.pdata
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 615KB - Virtual size: 614KB

.reloc
Size: 1KB - Virtual size: 1KB