e1d13e792bc84f5c32307806b0102a8aec303f0b81f73d9e04c890dbcdf2079c

Sharing

Copy URL

Twitter E-mail

General

Target

e1d13e792bc84f5c32307806b0102a8aec303f0b81f73d9e04c890dbcdf2079c
Size

106KB
MD5

410f67dc731b2ba4686624309f0e7d2e
SHA1

37d9c5f6f2818f8ec347e1f03032adcd92fa51a1
SHA256

e1d13e792bc84f5c32307806b0102a8aec303f0b81f73d9e04c890dbcdf2079c
SHA512

fa0c2b34f71c4a99480a189e80a829f3a39c664efafca7fb2ffe79104fcb3b8ac68730e4aba3b6cba1238ec0b26222d61bd859f36c384c0f6d1c4bec6b18b8de
SSDEEP

1536:v40UJo16SIF6+Um7DINQ+soST7ttb+5l4:/s7H+Nw7tcm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1d13e792bc84f5c32307806b0102a8aec303f0b81f73d9e04c890dbcdf2079c

Files

e1d13e792bc84f5c32307806b0102a8aec303f0b81f73d9e04c890dbcdf2079c
.dll windows:6 windows x86 arch:x86

c1856e1670adbce6c40b9684bab5cb1c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetEvent
WaitForSingleObjectEx
Sleep
CreateEventA
ResetEvent
SystemTimeToFileTime
GetLocalTime
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
WriteFile
GetLastError
CloseHandle
WaitForSingleObject
GetTickCount
TerminateThread
WriteConsoleW
SetStdHandle
FlushFileBuffers
GetStringTypeW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LCMapStringEx
LoadLibraryW
OutputDebugStringW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount64
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetModuleFileNameA
InitOnceExecuteOnce
InitializeCriticalSectionAndSpinCount
GetFileType
GetModuleHandleW
GetStartupInfoW
TerminateProcess
GetCurrentProcess
FlsFree
EncodePointer
DecodePointer
HeapFree
HeapAlloc
HeapReAlloc
CreateThread
GetCurrentThreadId
ExitThread
GetProcAddress
LoadLibraryExW
GetCommandLineA
RaiseException
RtlUnwind
IsDebuggerPresent
IsProcessorFeaturePresent
InterlockedDecrement
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
HeapSize
GetStdHandle
GetModuleFileNameW
GetProcessHeap
SetLastError
InterlockedIncrement
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlsAlloc
FlsGetValue
FlsSetValue
CreateFileW

user32

PeekMessageA
DispatchMessageA
TranslateMessage

seegull

Lx_Close_Scanner
Lx_Inquiry_Req
Lx_Init_Scanner_V2
Lx_Reset_Req
Lx_Stop_Scan_Msg_Req
Lx_Store_EventHandle
Ex_Enhanced_Power_Scan_Req
Lx_Spectrum_Analysis_Msg_Req
Lx_Reset_EventHandle
Lx_Pilot_Scan_Msg_Rsp
Ex_Enhanced_Top_N_Signal_Scan_Msg_Rsp
Lx_Scan_Data_Msg_Rsp_V2
Ex_Color_Code_CCH_Scan_Data_Msg_Rsp
Ex_Enhanced_Top_N_Signal_Scan_Msg_Req
Lx_Scan_Msg_Req_V2
Lx_Scan_Data_Msg_Req_V2
Ex_Top_N_Signal_Scan_Data_Msg_Req
Ex_Top_N_Pilot_Scan_Msg_Req_V2
Lx_Top_N_Pilot_Scan_Data_Msg_Req
Lx_Scan_Msg_Rsp_V2
Lx_Pilot_Scan_Data_Msg_Rsp
Lx_GetDeviceDataStatus
Lx_Stop_Scan_Msg_Rsp
Ex_Enhanced_Power_Scan_Data_Rsp
Lx_Spectrum_Analysis_Data_Msg_Req
Lx_Spectrum_Analysis_Data_Msg_Rsp
Lx_Top_N_Pilot_Scan_Msg_Rsp
Ex_Enhanced_Power_Scan_Data_Req
Ex_Color_Code_CCH_Scan_Msg_Req
Lx_Color_Code_CCH_Scan_Msg_Rsp
Ex_Top_N_Pilot_Scan_Data_Msg_Rsp_V2
Ex_Enhanced_Top_N_Signal_Scan_Data_Msg_Rsp
Lx_Spectrum_Analysis_Msg_Rsp

Exports

Exports

ConnectDevice
CreateDeviceHandle
DisconnectDevice
FreeDeviceHandle
GainVersion
GetDeviceState
PauseLog
ReadBuffer
ReadedData
RestoreLog
ResumeLog
SetDeviceConfigs
SetReadIOInterval
StartLog
StopLog

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1856e1670adbce6c40b9684bab5cb1c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

seegull

Exports

Exports

Sections

.text Size: 65KB - Virtual size: 65KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 14KB - Virtual size: 13KB

.text
Size: 65KB - Virtual size: 65KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 14KB - Virtual size: 13KB