pingowanieitesprawy[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

pingowanieitesprawy.dll
Size

981KB
MD5

bbba4223b10abd272b90bd305c0b95fe
SHA1

094526f8df6d39b63def80ae55d9aaad6a3dad88
SHA256

f4c1a8dba3a0c482cd6b72d74c7a1b69a660addfd27b4efb99c3308ce39ab731
SHA512

cd32e18cb00137ec6feac9ceabf54f1b754a4787bf5cc1177745345ad8307a4f773ba2ca4e3cde2465370365b75c4a7e3d0e7deae094855346ef00d8fc709c5c
SSDEEP

24576:VjY8uYPT/eetc6Ybk0O9uGKFJFTSpkPPknC4u:Gvc2eq6WA2FTFsnC4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
pingowanieitesprawy.dll

Files

pingowanieitesprawy.dll
.dll windows:6 windows x64 arch:x64

705a4970db5ecfb76cf5a75c9d87526d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\barte\Desktop\hejka\unnsense recode\x64\Release\unnsense recode.pdb

Imports

ws2_32

send

opengl32

wglGetProcAddress
glGetString
glPopMatrix
glViewport
glPopAttrib
glEnd
glMatrixMode
glLineWidth
glLoadIdentity
glBegin
glColor3ub
glDisable
glDepthRange
glPushMatrix
glOrtho
glPushAttrib
glGetIntegerv
wglGetCurrentDC
glGenLists
glCallLists
wglUseFontBitmapsA
glRasterPos2f
glListBase
glDrawElements
glPolygonOffset
glPolygonMode
glEnable
glVertex3f
glCullFace
glColor3f
glBlendFunc
glColor4fv
glColor4ub
glScalef
glColor4f
glGetFloatv
glBindTexture
glGenTextures
glScissor
glTexParameteri
glTexImage2D
glIsEnabled
glPixelStorei

user32

GetKeyState
LoadCursorA
ScreenToClient
GetCapture
ClientToScreen
IsChild
SetCapture
SetCursor
GetClientRect
ReleaseCapture
SetCursorPos
GetCursorPos
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardData
SetClipboardData
WindowFromDC
mouse_event
GetAsyncKeyState
CallWindowProcA
SetWindowLongPtrA
GetForegroundWindow

kernel32

InitializeSListHead
GetSystemTimeAsFileTime
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
SetThreadContext
FlushInstructionCache
GetModuleHandleW
GetCurrentProcessId
GetThreadContext
HeapDestroy
HeapAlloc
CloseHandle
HeapReAlloc
CreateToolhelp32Snapshot
ResumeThread
SuspendThread
GetCurrentThreadId
Thread32First
Thread32Next
GetCurrentProcess
HeapFree
VirtualProtect
HeapCreate
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualFree
QueryPerformanceCounter
QueryPerformanceFrequency
OpenThread
GlobalUnlock
WideCharToMultiByte
GlobalLock
GlobalFree
GlobalAlloc
MultiByteToWideChar
FreeLibraryAndExitThread
GetTickCount
GetProcAddress
CreateThread
GetTickCount64
Sleep
GetModuleHandleA
EnterCriticalSection
LoadLibraryA

imm32

ImmReleaseContext
ImmSetCompositionWindow
ImmGetContext

gdi32

CreateFontA
SelectObject
DeleteObject

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__current_exception
memcmp
memmove
__std_exception_destroy
__std_exception_copy
__std_terminate
strstr
__C_specific_handler
memchr
__current_exception_context
_CxxThrowException
memset
__std_type_info_destroy_list
memcpy

api-ms-win-crt-runtime-l1-1-0

_wassert
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_cexit
terminate
_initterm
_initterm_e
_invalid_parameter_noinfo_noreturn
_seh_filter_dll

api-ms-win-crt-stdio-l1-1-0

ftell
__acrt_iob_func
__stdio_common_vfprintf
__stdio_common_vsprintf
fflush
fclose
fseek
fwrite
__stdio_common_vsscanf
fread
__stdio_common_vsprintf_s
_wfopen

api-ms-win-crt-string-l1-1-0

strncpy
strcpy_s
strcmp

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-heap-l1-1-0

malloc
_callnewh
free

api-ms-win-crt-convert-l1-1-0

atof

api-ms-win-crt-math-l1-1-0

acosf
atan2f
sinf
ceilf
sqrtf
cosf
floorf
fmodf
powf
logf

Sections

.text
Size: 397KB - Virtual size: 397KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 541KB - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

705a4970db5ecfb76cf5a75c9d87526d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

opengl32

user32

kernel32

imm32

gdi32

vcruntime140_1

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-math-l1-1-0

Sections

.text Size: 397KB - Virtual size: 397KB

.rdata Size: 541KB - Virtual size: 540KB

.data Size: 18KB - Virtual size: 52KB

.pdata Size: 18KB - Virtual size: 17KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 397KB - Virtual size: 397KB

.rdata
Size: 541KB - Virtual size: 540KB

.data
Size: 18KB - Virtual size: 52KB

.pdata
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 5KB - Virtual size: 4KB