0a5f21523f31b9e659a4dcfee7669749b2c1b9e94cd4fafe3a8e3f33cbccd5fb

Sharing

Copy URL

Twitter E-mail

General

Target

0a5f21523f31b9e659a4dcfee7669749b2c1b9e94cd4fafe3a8e3f33cbccd5fb
Size

414KB
MD5

6b888db1fd34438b0391ff32336666be
SHA1

0a57681c5e7bb62396cba16db742786fc03e9f38
SHA256

0a5f21523f31b9e659a4dcfee7669749b2c1b9e94cd4fafe3a8e3f33cbccd5fb
SHA512

c000aa86327156910ba0512c63dc7eae5486ab71f534e90dd718f73f526bac307c182809ba512e513d92e6f9b595fa22270137e94e0a8d5d1651e156b1087fd8
SSDEEP

6144:pgPiNv0mt3CpR+IeYm79KKeZR1S/p9F9zPHi:pvNvx0+UKeZRKF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a5f21523f31b9e659a4dcfee7669749b2c1b9e94cd4fafe3a8e3f33cbccd5fb

Files

0a5f21523f31b9e659a4dcfee7669749b2c1b9e94cd4fafe3a8e3f33cbccd5fb
.dll windows:6 windows x86 arch:x86

6b32bdc2db4d9d1e86e67523a1052361

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

commondatasetbase

?GetModuleDir@Environment@common@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PAX@Z
?CopyLen@StringHelper@common@@YA_NPADIPBDZZ

kernel32

GetProcAddress
FreeLibrary
LoadLibraryA
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount64
DisableThreadLibraryCalls
EncodePointer

msvcp110

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_BADOFF@std@@3_JB
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Add_vtordisp1@?$basic_istream@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Add_vtordisp2@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z

msvcr110

strtod
ceil
_strtoi64
strtol
_wassert
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
?terminate@@YAXXZ
__clean_type_info_names_internal
memcpy
floor
__RTDynamicCast
__CxxFrameHandler3
_CxxThrowException
memmove
tolower
realloc
memchr
malloc
free
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
memset

ws2_32

inet_ntoa

Exports

Exports

CreateCommonSPSimpleInfoFactory
FreeSPSimpleInfoFactory

Sections

.text
Size: 271KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b32bdc2db4d9d1e86e67523a1052361

Headers

DLL Characteristics

File Characteristics

Imports

commondatasetbase

kernel32

msvcp110

msvcr110

ws2_32

Exports

Exports

Sections

.text Size: 271KB - Virtual size: 270KB

.rdata Size: 76KB - Virtual size: 75KB

.data Size: 21KB - Virtual size: 22KB

.rsrc Size: 1024B - Virtual size: 872B

.reloc Size: 44KB - Virtual size: 43KB

.text
Size: 271KB - Virtual size: 270KB

.rdata
Size: 76KB - Virtual size: 75KB

.data
Size: 21KB - Virtual size: 22KB

.rsrc
Size: 1024B - Virtual size: 872B

.reloc
Size: 44KB - Virtual size: 43KB