1a82e66b6592ab0b49085343a78ee021

Sharing

Copy URL Twitter E-mail

General

Target

1a82e66b6592ab0b49085343a78ee021
Size

156KB
MD5

1a82e66b6592ab0b49085343a78ee021
SHA1

ceacfeaf0c2911f4485ce58c8a5bdae8bc7db376
SHA256

46fc3f3b2e30ecb9de534957061020efcc01fdca1d79169151b1e44b0b0f05a1
SHA512

d8c8af4c9eda4155ba797432b0b3ceab311acf3f06405011e219391b1f54c9c031ff0d4504ac2b2295711d55788542f7fc27eb3bde39715c65f510ee4a34d9df
SSDEEP

3072:NemHGusHRr5XD3uAHDN79MkERgxmKdnVt9pgVjPA1LlhDhQ46:86MRFDVR5hERWdVa2LlhDh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a82e66b6592ab0b49085343a78ee021

Files

1a82e66b6592ab0b49085343a78ee021
.dll windows:5 windows x86 arch:x86

7124cf37623bb4ace79a5ba50354f2a8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

setupapi

SetupDiGetDeviceInterfaceDetailA

kernel32

lstrlenA
lstrcpyA
CreateDirectoryA
VirtualProtect
VirtualFree
VirtualAlloc
SetCurrentDirectoryA
LocalFree
LoadLibraryA
GetVersionExA
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
GetFileAttributesA
GetCurrentProcess
GetCurrentDirectoryA
FreeLibrary
FindFirstFileA
FindClose
ExitProcess

user32

ShowCursor
SetTimer
SetThreadDesktop
SetKeyboardState
GetWindowPlacement
GetCursorInfo
GetClipboardSequenceNumber
GetAsyncKeyState
EnumThreadWindows
EndPaint
DdeSetUserHandle
ChildWindowFromPointEx
CallNextHookEx
BeginPaint
GetIconInfo

gdi32

SetStretchBltMode
PlayEnhMetaFile
DeleteObject
GetObjectA
GetFontLanguageInfo
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
StretchBlt
GetBitmapBits
DeleteDC

advapi32

RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
LsaQuerySecret
RegQueryValueExA

ole32

StgCreateDocfileOnILockBytes

shell32

SHCreateDirectoryExW

Exports

Exports

GetTableInfo
HrCopyStreamCB
HrFillRasCombo
HrIsStreamUnicode
OpenTable
PixelMap
ReplaceCharsW

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7124cf37623bb4ace79a5ba50354f2a8

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

kernel32

user32

gdi32

advapi32

ole32

shell32

Exports

Exports

Sections

.text Size: 54KB - Virtual size: 54KB

.rdata Size: 83KB - Virtual size: 82KB

.data Size: 16KB - Virtual size: 19KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 54KB - Virtual size: 54KB

.rdata
Size: 83KB - Virtual size: 82KB

.data
Size: 16KB - Virtual size: 19KB

.rsrc
Size: 1KB - Virtual size: 1KB