37c9b7bb5d83bec0ca4ee580a0c84540

Sharing

Copy URL Twitter E-mail

General

Target

37c9b7bb5d83bec0ca4ee580a0c84540
Size

52KB
MD5

37c9b7bb5d83bec0ca4ee580a0c84540
SHA1

5327102644a7b1cf8db94b384bf0679f74f139ec
SHA256

28365124328978128299f27c10d1dc5f35d58ef18ff57fdb40ef0f8e09a77dc8
SHA512

cac15bf56807c0d2d01221278017573c6e8d0a66ceeedbaffc03822172ea4ff3855c612f858afca74796803a804cb72f750e8095340bb0c1a8f9fc9741f52310
SSDEEP

1536:mQob38y3E9MT7/hO3ahJtdONs3dcOKR0o:mQob3ZHnrJtsN3R0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37c9b7bb5d83bec0ca4ee580a0c84540

Files

37c9b7bb5d83bec0ca4ee580a0c84540
.dll windows:5 windows x86 arch:x86

584d7de16c97831ff0474dcaa9c2d2e4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ole32

OleLoad
OleGetIconOfClass
StgCreateDocfile
CoDisconnectObject
StgCreateDocfileOnILockBytes
CreateOleAdviseHolder
OleCreateLink
CreateDataAdviseHolder
OleRegGetUserType
CoIsOle1Class

user32

GetMenu
GetCursor
GetActiveWindow
InflateRect
GetDlgItem
PostQuitMessage
OffsetRect
MapWindowPoints
ShowCaret
IntersectRect
EnumClipboardFormats
GetClipboardOwner
EmptyClipboard
IsRectEmpty
ReleaseDC

kernel32

GetLocalTime
CreateFileMappingA
TerminateThread
LocalFileTimeToFileTime
WaitForMultipleObjects
GetCurrentDirectoryA
GetProcAddress
LoadLibraryA
EnterCriticalSection
GetModuleHandleA
GetStartupInfoA
LeaveCriticalSection
GetSystemDefaultLCID
VirtualQueryEx
MapViewOfFile
IsProcessorFeaturePresent
InitializeCriticalSection
UnmapViewOfFile
SetThreadPriority
CreateThread
WinExec

dpladtuq

ImmIMPGetIMEA
InternalExtractIconListA
ImmGetConversionListA
SdbGetTagFromTagID
DAD_ShowDragImage
ImmProcessKey
SdbGetEntryFlags
ImmSetActiveContext
ImmLockIMC
ImmGetIMCCSize
ImmGetIMEFileNameA
ILCloneFirst
ILIsParent
DAD_SetDragImage
SdbGetDatabaseVersion
ImmDisableTextFrameService
PifMgr_OpenProperties
ExtractAssociatedIconA
SdbReadStringTag
SdbQueryData

gdi32

LPtoDP
GetNearestPaletteIndex
GetObjectType
ExcludeClipRect
GetSystemPaletteEntries
PlayEnhMetaFile
EnumMetaFile
EndDoc
IntersectClipRect
GetRgnBox
AbortDoc
CreateFontA
CreateRoundRectRgn
GetTextColor
PlayEnhMetaFileRecord

msvcrt

exit
__p__commode

advapi32

CryptGetHashParam
MakeSelfRelativeSD

Exports

Exports

CreateProcessNotify
ddoddiag

Sections

.text
Size: 36KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

584d7de16c97831ff0474dcaa9c2d2e4

Headers

File Characteristics

Imports

ole32

user32

kernel32

dpladtuq

gdi32

msvcrt

advapi32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 40KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 36KB - Virtual size: 40KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB