b5059528103afe63670462cdeb073506

Sharing

Copy URL Twitter E-mail

General

Target

b5059528103afe63670462cdeb073506
Size

20KB
MD5

b5059528103afe63670462cdeb073506
SHA1

21fa6943f29a53237b74d0d1fefcdaac083e439f
SHA256

680ea2e492e55e0b70c452068e05dcf5777074e9a38a93b532e1cf0ed5fb891d
SHA512

222e24fc35f05a470025fe2ce16f0150f42da631a6e5774c2437d041e085b1afba096e5238ec0bbfc21acd4bb9003104d43da8b780ca42495254fb46c185842e
SSDEEP

384:bBYTW0pZ8pE+WD4249L+VDgf9lVyKsiqw:bBYTrpuNWD4249L4gvYFiq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b5059528103afe63670462cdeb073506

Files

b5059528103afe63670462cdeb073506
.dll windows:4 windows x86 arch:x86

9a6389862cae3e06a1b9613982e92db6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetBinaryTypeA
GetPrivateProfileStructA
GetWindowsDirectoryW
VirtualAlloc
VirtualFree
ExpandEnvironmentStringsW
GetDriveTypeA
GetSystemDefaultLCID
GetFullPathNameA
GetStringTypeW
GetCurrentDirectoryA
TlsAlloc
LoadLibraryA
CreateSemaphoreA
GetEnvironmentVariableA
InterlockedIncrement
GetCurrentProcess
GetProcessVersion
GetVolumePathNameA
ResetEvent
GetProcAddress
VirtualProtect
TlsFree
WideCharToMultiByte
GetTempPathA
GetTempPathA
GetFileSize
GetDateFormatW

msvcrt

fwprintf
__p__pctype
_mbsspn
fgetwc
_getw
__threadid
_chdir
_flsbuf
_mbctohira
memcpy
strchr
_fputchar
_mbsinc
_wsystem
_wtol
_chdrive

comdlg32

dwOKSubclass
GetOpenFileNameA
ChooseFontA
LoadAlterBitmap
PrintDlgW
PrintDlgA
ReplaceTextW
PrintDlgExA
PageSetupDlgA
ReplaceTextA
LoadAlterBitmap
FindTextW
GetSaveFileNameA

winmm

mciGetErrorStringW
timeGetTime
mciLoadCommandResource
midiStreamPause
mmioOpenA
mmTaskYield
mmioRenameW
mmioInstallIOProcA
DrvGetModuleHandle
mid32Message
waveOutSetPlaybackRate
mciSendCommandA
midiOutGetErrorTextA
WOW32ResolveMultiMediaHandle
SendDriverMessage
DriverCallback
midiOutOpen

opengl32

glRasterPos3dv
glRasterPos3i
glPixelMapuiv
glTexCoord3dv
glRasterPos3sv
glTexCoord4sv
glTexCoord2i
glTexImage1D
glFinish
glVertex4iv
glClipPlane
glColor3b
glIndexs
glIndexdv
glGetDoublev
glRasterPos3s
wglMakeCurrent
glPopAttrib

Exports

Exports

FijdtWos
TqsldzSdrjfn
RnKkzdrtzVt

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a6389862cae3e06a1b9613982e92db6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

comdlg32

winmm

opengl32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 52B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 52B