16b2f35f55b7f5831a2278a8063cf7780e0064182ca0b845cce17bd84e96cbdb

Sharing

Copy URL Twitter E-mail

General

Target

16b2f35f55b7f5831a2278a8063cf7780e0064182ca0b845cce17bd84e96cbdb
Size

785KB
MD5

e3d99db0b569bee604defc7e586250c8
SHA1

d269f788db5cda152eb8821b9c21bbefd154dbf6
SHA256

16b2f35f55b7f5831a2278a8063cf7780e0064182ca0b845cce17bd84e96cbdb
SHA512

d392adee5e76a972124c5dae219d5f6ca5657533f9a6bdcc31694f1e27a47404de1b8240dfa270e2ebb1ba9e2203b1ee90f872dd8688a98c5eecfe5d97ed1e34
SSDEEP

12288:MSxiZmUQoVrOP/YKL64eOWB63SR0btxFu7Z9SQP01M:ziZ5q3L6TOWWSR0baZM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16b2f35f55b7f5831a2278a8063cf7780e0064182ca0b845cce17bd84e96cbdb

Files

16b2f35f55b7f5831a2278a8063cf7780e0064182ca0b845cce17bd84e96cbdb
.dll windows:6 windows x86 arch:x86

06ce6347918f18e6f4a1a4dcc2be2919

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

commondatasetbase

?GetModuleDir@Environment@common@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PAX@Z
?CopyLen@StringHelper@common@@YA_NPADIPBDZZ

kernel32

GetProcAddress
FreeLibrary
LoadLibraryA
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount64
DisableThreadLibraryCalls
EncodePointer

msvcp110

?_BADOFF@std@@3_JB
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Add_vtordisp1@?$basic_istream@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Add_vtordisp2@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z

msvcr110

memchr
realloc
tolower
toupper
strtod
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABV01@@Z
ceil
_strtoi64
strtol
_isnan
_fpclass
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
_vsnprintf
?terminate@@YAXXZ
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
__clean_type_info_names_internal
memcpy
floor
_libm_sse2_pow_precise
malloc
free
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
memmove
_libm_sse2_exp_precise
__CxxFrameHandler3
_CxxThrowException
memset

ws2_32

inet_ntoa

Exports

Exports

CreateCommonDataSetInfo
FreeCommonDataSetInfo

Sections

.text
Size: 558KB - Virtual size: 557KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06ce6347918f18e6f4a1a4dcc2be2919

Headers

DLL Characteristics

File Characteristics

Imports

commondatasetbase

kernel32

msvcp110

msvcr110

ws2_32

Exports

Exports

Sections

.text Size: 558KB - Virtual size: 557KB

.rdata Size: 103KB - Virtual size: 103KB

.data Size: 38KB - Virtual size: 40KB

.rsrc Size: 1024B - Virtual size: 872B

.reloc Size: 83KB - Virtual size: 82KB

.text
Size: 558KB - Virtual size: 557KB

.rdata
Size: 103KB - Virtual size: 103KB

.data
Size: 38KB - Virtual size: 40KB

.rsrc
Size: 1024B - Virtual size: 872B

.reloc
Size: 83KB - Virtual size: 82KB