repliRsnt
Static task
static1
Behavioral task
behavioral1
Sample
5366d55f0194f102d645049c83b7f851.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
5366d55f0194f102d645049c83b7f851.dll
Resource
win10v2004-20231222-en
General
-
Target
5366d55f0194f102d645049c83b7f851
-
Size
29KB
-
MD5
5366d55f0194f102d645049c83b7f851
-
SHA1
bed223d2b7feccc7a3c9a3be7312e40f5876c778
-
SHA256
c25f1f065f05e5b2bc13b07eafc0525ceef22b0f2f5c0d4d4b22b4fa10406833
-
SHA512
9de49a6f374cb99b2330696911e3cf293da185a56b522b92a1ea9b2552a796920e259f7205caac408dc895af39b52bdca5ac19d4a4a14ff2010925fb5eefa523
-
SSDEEP
768:9DvavvtcdsborA1wfQBSmT91K9JHvX0BNAR4XKTu:9WqpuGWx
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5366d55f0194f102d645049c83b7f851
Files
-
5366d55f0194f102d645049c83b7f851.dll windows:4 windows x86 arch:x86
6df9cbc8e3971e01908537ae06e6d333
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
crtdll
strlen
__GetMainArgs
gdi32
PolyBezierTo
PatBlt
user32
CreateCaret
AppendMenuA
DdeUninitialize
DdeDisconnect
GetSubMenu
DefMDIChildProcA
DdeFreeStringHandle
GetClassNameW
GetClassNameA
DrawTextW
GetIconInfo
GetClipboardData
GetUserObjectSecurity
MessageBoxA
RegisterHotKey
IsDialogMessageA
TranslateMessage
GetSysColor
PostMessageW
IsClipboardFormatAvailable
kernel32
CloseHandle
FindNextFileW
EnterCriticalSection
GetStdHandle
FatalAppExitA
GetModuleHandleA
GetStringTypeExW
GetUserDefaultLCID
OutputDebugStringA
HeapDestroy
WriteConsoleW
GetThreadLocale
GetTempFileNameW
HeapReAlloc
SetEnvironmentVariableA
SetThreadPriority
SetThreadLocale
Exports
Exports
Sections
CODE Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 22KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 20KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 69B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ