fc109dad7efe49b51c5360b6bdfb46fc

Sharing

Copy URL

Twitter E-mail

General

Target

fc109dad7efe49b51c5360b6bdfb46fc
Size

32KB
MD5

fc109dad7efe49b51c5360b6bdfb46fc
SHA1

dc3e31f8484e5903e8efcf1cd82b947b34803958
SHA256

0bcb31981e2f7fcc498a80b665948f77eb00d3046844d67af34e3970d47dd746
SHA512

6ad8003059fba8cb5d1cff9a98bcbe5574f31a4e44fda6dbf11ae2ad8e73a16b8a0d8b95b409e02e4fae203782aba66744455ea9cb0a2a5a5f17ac3af4a937f1
SSDEEP

768:gzPG3w/lNz1iB42xQkua29TM8JfKQcQKMX916iMhFBjZNk:Ha0x/d2biEKMt16iMvVZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc109dad7efe49b51c5360b6bdfb46fc

Files

fc109dad7efe49b51c5360b6bdfb46fc
.dll windows:5 windows x86 arch:x86

6cc113924a04c77b6e6cadc5614c116f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

tlmi

??APolyPolygon@@QAEAAVPolygon@@G@Z
??0PolyPolygon@@QAE@ABV0@@Z
??4Polygon@@QAEAAV0@ABV0@@Z
??1PolyPolygon@@QAE@XZ
?HasFlags@Polygon@@QBEEXZ
??0Polygon@@QAE@XZ
??0String@@QAE@ABV0@GG@Z
??0Polygon@@QAE@G@Z
?SetPoint@Polygon@@QAEXABVPoint@@G@Z
?Rotate@Polygon@@QAEXABVPoint@@G@Z
??0String@@QAE@G@Z
??0String@@QAE@ABV0@@Z
??0Rectangle@@QAE@ABVPoint@@ABVSize@@@Z
??XBigInt@@QAEAAV0@ABV0@@Z
??ZBigInt@@QAEAAV0@ABV0@@Z
??YBigInt@@QAEAAV0@ABV0@@Z
??_0BigInt@@QAEAAV0@ABV0@@Z
??XFraction@@QAEAAV0@ABV0@@Z
??0SvMemoryStream@@QAE@KK@Z
??1SvMemoryStream@@UAE@XZ
?SetNumberFormatInt@SvStream@@QAEXG@Z
??5SvStream@@QAEAAV0@AAK@Z
?SeekRel@SvStream@@QAEKJ@Z
??5SvStream@@QAEAAV0@AAG@Z
??5SvStream@@QAEAAV0@AAE@Z
?Read@SvStream@@QAEKPAXK@Z
?Write@SvStream@@QAEKPBXK@Z
?Assign@String@@QAEAAV1@ABV1@@Z
??0Polygon@@QAE@ABVRectangle@@@Z
??1Polygon@@QAE@XZ
??1String@@QAE@XZ
?BottomLeft@Rectangle@@QBE?AVPoint@@XZ
?Equals@String@@QBEEABV1@@Z
?TopRight@Rectangle@@QBE?AVPoint@@XZ
?Count@PolyPolygon@@QBEGXZ
?GetObject@PolyPolygon@@QBEABVPolygon@@G@Z
?GetSize@Polygon@@QBEGXZ
?GetPoint@Polygon@@QBEABVPoint@@G@Z
?GetHeight@Rectangle@@QBEJXZ
?GetWidth@Rectangle@@QBEJXZ
??6SvStream@@QAEAAV0@K@Z
?GetError@SvStream@@QBEKXZ
??0ByteString@@QAE@ABVString@@GK@Z
??6SvStream@@QAEAAV0@D@Z
??1ByteString@@QAE@XZ
??0String@@QAE@XZ
?Seek@SvStream@@QAEKK@Z
??6SvStream@@QAEAAV0@G@Z
??6SvStream@@QAEAAV0@J@Z
??6SvStream@@QAEAAV0@E@Z
?GetObject@Container@@QBEPAXK@Z
?AdaptiveSubdivide@Polygon@@QBEXAAV1@N@Z

vclmi

?GetDescent@FontMetric@@QBEJXZ
?GetAscent@FontMetric@@QBEJXZ
?GetFontMetric@OutputDevice@@QBE?AVFontMetric@@ABVFont@@@Z
??0VirtualDevice@@QAE@G@Z
?GetAlign@Font@@QBE?AW4TextAlign@@XZ
??1LineInfo@@QAE@XZ
??0LineInfo@@QAE@ABV0@@Z
?Stop@GDIMetaFile@@QAEXXZ
?DrawBitmap@OutputDevice@@QAEXABVPoint@@ABVBitmap@@@Z
?Record@GDIMetaFile@@QAEXPAVOutputDevice@@@Z
?GetGDIMetaFile@Graphic@@QBEABVGDIMetaFile@@XZ
?GetType@Graphic@@QBE?AW4GraphicType@@XZ
??1FontInfo@@QAE@XZ
??1VirtualDevice@@UAE@XZ
?GetColor@Font@@QBEABVColor@@XZ
?GetFillColor@Font@@QBEABVColor@@XZ
?GetSize@Font@@QBEABVSize@@XZ
?GetOrientation@Font@@QBEFXZ
?SetFont@OutputDevice@@QAEXABVFont@@@Z
?GetFontMetric@OutputDevice@@QBE?AVFontMetric@@XZ
?GetTextArray@OutputDevice@@QBEJABVString@@PAJGG@Z
??0Bitmap@@QAE@ABV0@@Z
?Crop@Bitmap@@QAEEABVRectangle@@@Z
??0GDIMetaFile@@QAE@XZ
?SetMapMode@OutputDevice@@UAEXABVMapMode@@@Z
?AddGradientActions@OutputDevice@@QAEXABVRectangle@@ABVGradient@@AAVGDIMetaFile@@@Z
?AddHatchActions@OutputDevice@@QAEXABVPolyPolygon@@ABVHatch@@AAVGDIMetaFile@@@Z
?SetColor@Font@@QAEXABVColor@@@Z
?SetFillColor@Font@@QAEXABVColor@@@Z
??8MapMode@@QBEEABV0@@Z
??0MapMode@@QAE@ABV0@@Z
?SetScaleX@MapMode@@QAEXABVFraction@@@Z
?SetScaleY@MapMode@@QAEXABVFraction@@@Z
??4MapMode@@QAEAAV0@ABV0@@Z
??4Font@@QAEAAV0@ABV0@@Z
?Scale@GDIMetaFile@@QAEXNN@Z
?Move@GDIMetaFile@@QAEXJJ@Z
??0GraphicConversionParameters@@QAE@ABVSize@@_N11@Z
??0Graphic@@QAE@ABVBitmapEx@@@Z
?GetBitmap@Graphic@@QBE?AVBitmap@@ABVGraphicConversionParameters@@@Z
??1Bitmap@@QAE@XZ
??1Graphic@@UAE@XZ
??6@YAAAVSvStream@@AAV0@ABVBitmap@@@Z
??0BitmapPalette@@QAE@G@Z
??1BitmapPalette@@QAE@XZ
??1Font@@QAE@XZ
??0Font@@QAE@XZ
??0MapMode@@QAE@XZ
?GetSizePixel@Bitmap@@QBE?AVSize@@XZ
??0MapMode@@QAE@W4MapUnit@@@Z
?LogicToLogic@OutputDevice@@SA?AVSize@@ABV2@ABVMapMode@@1@Z
??1MapMode@@QAE@XZ
?GetName@Font@@QBEABVString@@XZ
?GetWeight@Font@@QBE?AW4FontWeight@@XZ
?LogicToLogic@OutputDevice@@SA?AVPoint@@ABV2@ABVMapMode@@1@Z
??0GDIMetaFile@@QAE@ABV0@@Z
??1GDIMetaFile@@UAE@XZ
?SetOrigin@MapMode@@QAEXABVPoint@@@Z

svtmi

?GetStatusIndicator@FilterConfigItem@@QBE?AV?$Reference@VXStatusIndicator@task@star@sun@com@@@uno@star@sun@com@@XZ

sal3

rtl_uString_release
rtl_uString_new
osl_getThreadTextEncoding

msvcr90

free
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
_malloc_crt
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_encode_pointer
_CIatan2
??_U@YAPAXI@Z
??_V@YAXPAX@Z
??3@YAXPAX@Z
??2@YAPAXI@Z
_CIcos
_CIsin
__CppXcptFilter

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

Exports

Exports

GetVersionInfo
GraphicExport

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6cc113924a04c77b6e6cadc5614c116f

Headers

DLL Characteristics

File Characteristics

Imports

tlmi

vclmi

svtmi

sal3

msvcr90

kernel32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 932B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 932B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB