78dccea1f957647003693a45bc8df0d7

Sharing

Copy URL Twitter E-mail

General

Target

78dccea1f957647003693a45bc8df0d7
Size

344KB
MD5

78dccea1f957647003693a45bc8df0d7
SHA1

c418765dd29ea19a0118b34101489bbe42ccaced
SHA256

26ad9aafc68b74367723f060a8172c61205c59e97a7989b5a95d1184fcdeec40
SHA512

86595257f3d93528c7bbf0a69db5396ec208a4f0c4f856599f29c37382f3b8f4b0018cb62bf7808db231317913dad978640acbad914da83eded4ffcf8ad908c9
SSDEEP

6144:y1MylsfqT6+lo1OBUcC/Cj6ATkty7pM6qZ/G:eMylsfGoRd/bNej

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78dccea1f957647003693a45bc8df0d7

Files

78dccea1f957647003693a45bc8df0d7
.dll windows:5 windows x86 arch:x86

5fe49bedf9bcc60fd6ffa0fc574b284c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

setupapi

CM_Get_Sibling
SetupDiGetDeviceRegistryPropertyA
SetupDiOpenDeviceInfoA
CM_Get_Device_IDA
CM_Get_Parent
SetupDiOpenDevRegKey
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiClassGuidsFromNameA
SetupDiEnumDeviceInfo
CM_Get_Child

mfc100

ord7875
ord7876
ord7487
ord4464
ord2063
ord2061
ord1267
ord1929
ord7837
ord1948
ord408
ord2050
ord1294
ord2611
ord2137
ord2138
ord421
ord10906
ord13312
ord2524
ord977
ord4144
ord265
ord266
ord1483
ord11646
ord4870
ord11781
ord5827
ord417
ord4498
ord12095
ord13045
ord5242
ord305
ord2626
ord2617
ord4143
ord3404
ord1313
ord1437
ord3839
ord1448
ord5207
ord4283
ord316
ord901
ord300
ord310
ord1296
ord12720
ord12096
ord6010
ord2056
ord11274
ord869
ord4868
ord11439
ord11461
ord13310
ord11513
ord7322
ord11744
ord11297
ord1316
ord11627
ord13329
ord1982
ord1481
ord273
ord1854
ord1479

msvcr100

strstr
_strnicmp
__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
printf
srand
rand
_time64
malloc
free
_CxxThrowException
memmove_s
_mbsnbicmp
strtol
_itoa
strncmp
sscanf
atoi
memcpy_s
__CxxFrameHandler3
memcpy
memset
sprintf
strncpy
_memicmp

kernel32

GetSystemDefaultLCID
SetupComm
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
DecodePointer
EncodePointer
GetTickCount
CreateEventA
CreateMutexA
InitializeCriticalSection
GetCommTimeouts
SetCommTimeouts
Sleep
GetExitCodeThread
TerminateThread
FlushFileBuffers
SuspendThread
SetCommMask
ResumeThread
GetCommState
SetCommState
PurgeComm
WriteFile
ClearCommError
WaitCommEvent
ReadFile
WaitForSingleObject
GetOverlappedResult
SetEvent
LoadLibraryA
GetProcAddress
FreeLibrary
CreateFileA
CloseHandle
GetLastError
OutputDebugStringA
RaiseException
GetVersionExA

user32

wsprintfA

advapi32

RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
RegEnumValueA
RegCloseKey

shlwapi

StrStrIA

netapi32

NetWkstaGetInfo
NetApiBufferFree

Exports

Exports

_A123
_DetchCommonDLL

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5fe49bedf9bcc60fd6ffa0fc574b284c

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

mfc100

msvcr100

kernel32

user32

advapi32

shlwapi

netapi32

Exports

Exports

Sections

.text Size: 118KB - Virtual size: 117KB

.rdata Size: 17KB - Virtual size: 16KB

.data Size: 1024B - Virtual size: 42KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 118KB - Virtual size: 117KB

.rdata
Size: 17KB - Virtual size: 16KB

.data
Size: 1024B - Virtual size: 42KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 11KB - Virtual size: 11KB