_bitarray[.]cp310-win_amd64[.]pyd

Sharing

Copy URL

Twitter E-mail

General

Target

_bitarray.cp310-win_amd64.pyd
Size

58KB
MD5

126b7da04f89bd3656b9bfbf9b41463b
SHA1

3493127e41a099534247b9f0de2013dbf5fe3e09
SHA256

5435589cfdc36599750cbc3a465ca19256382750b277cd73016f87dbe0dcbbdf
SHA512

3c59e6f5bebf0e1259617d7827210f776903d8e73736aa467a7049ea56282dcedc238b5985440d11d602cdf0f0b723dcb4e7873fbd22e1ab82dfb56f7dbb76fe
SSDEEP

1536:YxKtkKtncCEebpJQSalIflEK0GXK+mPlj5GM:uKG+cCEepJQSaylrnoP/G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
_bitarray.cp310-win_amd64.pyd

Files

_bitarray.cp310-win_amd64.pyd
.dll windows:6 windows x64 arch:x64

d5387a79db6f045516a13d7b242a6ae9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

python310

PyModule_Create2
PyType_Ready
PyObject_GetAttrString
_PyObject_CallMethod_SizeT
PyExc_EOFError
PyErr_Clear
PyList_Append
PyDict_SetItem
PyDict_New
PySequence_Check
PyMem_Free
PyLong_FromVoidPtr
PyType_GenericAlloc
PyErr_NoMemory
PyExc_ValueError
PyIndex_Check
PyObject_GC_Track
PyBytes_FromStringAndSize
_Py_NotImplementedStruct
PyNumber_AsSsize_t
PyExc_TypeError
PyMem_Realloc
PyObject_HashNotImplemented
PyMem_Malloc
PyExc_IndexError
_PyObject_GC_New
PyList_New
PyType_Type
PyIter_Check
PyObject_GetIter
PyUnicode_AsASCIIString
PyIter_Next
PyErr_SetString
PyList_Size
PyBuffer_FillInfo
PyDict_Size
_Py_NoneStruct
PyObject_GC_UnTrack
PySlice_Unpack
PyLong_FromLong
PyObject_GenericGetAttr
PyLong_FromSsize_t
PyErr_Occurred
PyObject_SelfIter
PySequence_GetItem
PyBytes_AsString
PyImport_ImportModule
PySlice_Type
PyLong_AsSsize_t
_Py_BuildValue_SizeT
PyBool_FromLong
PySlice_AdjustIndices
PyExc_BufferError
PyObject_GetBuffer
PyObject_ClearWeakRefs
PyObject_GC_Del
_PyArg_ParseTuple_SizeT
PyModule_AddObject
PyObject_Free
_Py_Dealloc
PyExc_OverflowError
PyType_IsSubtype
PyBool_Type
PyErr_Format
_PyArg_ParseTupleAndKeywords_SizeT
PyBuffer_Release
PyDict_Next
PyDict_GetItem
PySequence_Size

kernel32

GetSystemTimeAsFileTime
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
RtlCaptureContext
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent

vcruntime140

__std_type_info_destroy_list
memset
memmove
__C_specific_handler
memcpy
memcmp

api-ms-win-crt-runtime-l1-1-0

_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm

Exports

Exports

PyInit__bitarray

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5387a79db6f045516a13d7b242a6ae9

Headers

DLL Characteristics

File Characteristics

Imports

python310

kernel32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 6KB

.pdata Size: 2KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 248B

.reloc Size: 512B - Virtual size: 504B

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 6KB

.pdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 248B

.reloc
Size: 512B - Virtual size: 504B