DeltaModulator_x64[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

DeltaModulator_x64.dll
Size

410KB
MD5

622397065c3a17a04468c2d9b391cfb4
SHA1

9d4fd855517a865d8bdd3e0131bd5323f6d257c3
SHA256

4826903d5c7c3852cb4cf8ffc211ae464a1f8ce86521883cc3113546f55f56fc
SHA512

7074b342b7f9f9993bb2c594c0fba021a0f2c9610c5193aee4bfe30204bf8c958338e4815bb50b8a6d1fc8187e9b1e73b1876fb4b94081d1644f558bc56b2621
SSDEEP

6144:jyl0IbikkyWkfZKwGoBVmZF8d192ZZ7pgyalU5iSy87oGMbwq/Sx:yRfGouZF42AU5EGMUq/Sx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DeltaModulator_x64.dll

Files

DeltaModulator_x64.dll
.dll windows:5 windows x64 arch:x64

144ef1cb5cb3f1f14690e3f4269ed8aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

GlobalLock
GlobalAlloc
CreateFileA
CloseHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetStringTypeW
GetStringTypeA
FlushFileBuffers
HeapReAlloc
InitializeCriticalSectionAndSpinCount
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
HeapSize
IsValidCodePage
GetOEMCP
GetACP
GlobalSize
HeapDestroy
HeapCreate
HeapSetInformation
ExitProcess
GetModuleHandleW
DeleteCriticalSection
GetStartupInfoA
GetFileType
SetHandleCount
FlsAlloc
SetLastError
FlsFree
FlsGetValue
DecodePointer
EncodePointer
GetModuleFileNameA
GetStdHandle
WriteFile
GetCommandLineA
FlsSetValue
GetCurrentThreadId
RaiseException
RtlCaptureContext
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlPcToFileHeader
HeapAlloc
HeapFree
GetLastError
LeaveCriticalSection
EnterCriticalSection
RtlUnwindEx
RtlLookupFunctionEntry
GlobalUnlock
Sleep
GlobalFree
FindResourceA
SizeofResource
LoadResource
LockResource
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExW
WideCharToMultiByte
MultiByteToWideChar
GetTickCount
GetCPInfo

gdiplus

GdipClonePath
GdipRestoreGraphics
GdipGetEmHeight
GdipGetCellAscent
GdipGetCellDescent
GdipGetLineSpacing
GdipGetFamily
GdipGetFontSize
GdipGetFontHeightGivenDPI
GdipSetSolidFillColor
GdipDeleteBrush
GdipDeleteMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipAlloc
GdipFree
GdipCloneImage
GdipCloneBrush
GdipSaveGraphics
GdipSetClipRect
GdipDrawImageRectRectI
GdipMeasureString
GdipDrawString
GdipFillPath
GdipFillEllipse
GdipFillPolygon
GdipFillRectangle
GdipDrawPath
GdipDrawPolygon
GdipDrawEllipse
GdipDrawRectangle
GdipDrawLine
GdipGetDpiY
GdipSetPageUnit
GdipTranslateWorldTransform
GdipSetPixelOffsetMode
GdipSetSmoothingMode
GdipSetInterpolationMode
GdipSetTextRenderingHint
GdipGetImageGraphicsContext
GdipCreateFromHWND
GdipCreateFromHDC
GdipTransformPath
GdipAddPathEllipse
GdipAddPathRectangle
GdipAddPathBezier
ord1
GdipAddPathLine
GdipGetPathLastPoint
GdipClosePathFigure
GdipStartPathFigure
GdipSetPathFillMode
GdipSetPenDashArray
GdipSetPenDashOffset
GdipSetPenDashStyle
GdipSetPenColor
GdipSetPenLineJoin
GdipSetPenLineCap197819
GdipSetPenWidth
GdipCreateLineBrush
GdipCreateSolidFill
GdipCreateMatrix2
GdipSetImageAttributesColorMatrix
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromResource
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteFont
GdipCreateFont
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipCreateFontFamilyFromName
GdipGetPathWorldBounds
GdipDeleteGraphics
GdipDeletePath
GdipCreatePath
GdipDeletePen
GdipCreatePen1
GdipSetLineBlend

shell32

ord74
DragQueryFileW

ole32

DoDragDrop
RevokeDragDrop
CoCreateInstance
OleInitialize
OleUninitialize
RegisterDragDrop

gdi32

CreateDIBSection
DeleteDC
CreateCompatibleDC
DeleteObject
CreateSolidBrush
CreateFontIndirectW
GetRegionData
CreateRectRgn
SetBkColor
SetTextColor

user32

CallWindowProcW
wsprintfW
RegisterClassW
GetFocus
SetCapture
TrackMouseEvent
ReleaseCapture
GetUpdateRgn
BeginPaint
EndPaint
GetClientRect
TrackPopupMenu
DestroyMenu
CreatePopupMenu
SetMenuInfo
AppendMenuW
SetMenuItemInfoW
SetTimer
DispatchMessageW
PeekMessageW
SetWindowPos
GetWindowRect
GetClassNameW
GetParent
GetSystemMetrics
GetWindowInfo
MapWindowPoints
GetCursorPos
GetAsyncKeyState
SetCursor
LoadCursorW
SetFocus
InvalidateRect
SendMessageW
GetCursor
SetWindowTextW
GetWindowTextW
GetDC
UnregisterClassW
DestroyWindow
CreateWindowExW
SetWindowLongPtrW
KillTimer
GetWindowTextLengthW
DefWindowProcW
GetKeyState
GetWindowLongPtrW

Exports

Exports

VSTPluginMain
main

Sections

.text
Size: 239KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

144ef1cb5cb3f1f14690e3f4269ed8aa

Headers

File Characteristics

Imports

kernel32

gdiplus

shell32

ole32

gdi32

user32

Exports

Exports

Sections

.text Size: 239KB - Virtual size: 238KB

.rdata Size: 89KB - Virtual size: 89KB

.data Size: 13KB - Virtual size: 24KB

.pdata Size: 18KB - Virtual size: 17KB

.rsrc Size: 35KB - Virtual size: 35KB

.reloc Size: 14KB - Virtual size: 13KB

.text
Size: 239KB - Virtual size: 238KB

.rdata
Size: 89KB - Virtual size: 89KB

.data
Size: 13KB - Virtual size: 24KB

.pdata
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 35KB - Virtual size: 35KB

.reloc
Size: 14KB - Virtual size: 13KB