D:\a\pdfium-binaries\pdfium-binaries\pdfium\out\pdfium.dll.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
iepdf32.dll
Resource
win7-20240221-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
iepdf32.dll
Resource
win10v2004-20240226-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
iepdf32.dll
-
Size
4.3MB
-
MD5
65025d2c4c683c3119cf240ce6a824d1
-
SHA1
d885294ff5772aeb4647b2a87f3083580cb10573
-
SHA256
e8f59d0a0b1bb607b1760c45afd1aecbdf4dec0eec50ffaa4b4435af482615a2
-
SHA512
31ac4549fb1b2c3adae890bdc5f23da245f76e2cc71ff52c1186a8718673109ee19699a22fe8a4075d897a601f0c891dcb57dbd74b544739ea87b5a8db991512
-
SSDEEP
98304:RszKnK7RZKZk8AZ1ushgTsOTb1W5gmTKuCIUMPaUownZCICDQZ:RRZkB1kqgmFPaQCICDw
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource iepdf32.dll
Files
-
iepdf32.dll.dll windows:5 windows x86 arch:x86
224f7c709bbe989ade2d7ede1bc05f77
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
kernel32
AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
CreateMutexW
DecodePointer
DeleteCriticalSection
DeleteFileW
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExA
FindFirstFileExW
FindNextFileA
FindNextFileW
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetLogicalProcessorInformation
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryA
GetSystemInfo
GetSystemTime
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetWindowsDirectoryA
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitOnceExecuteOnce
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
K32EnumProcessModules
K32GetModuleFileNameExA
K32GetModuleInformation
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
MultiByteToWideChar
OpenProcess
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseMutex
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureStackBackTrace
RtlUnwind
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrlenA
advapi32
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
gdi32
BeginPath
BitBlt
CloseFigure
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontA
CreateFontIndirectA
CreatePen
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
EndPath
EnumFontFamiliesExA
ExtCreatePen
ExtEscape
FillPath
GdiComment
GetCharWidthW
GetClipBox
GetClipRgn
GetDIBits
GetDeviceCaps
GetFontData
GetObjectType
GetObjectW
GetOutlineTextMetricsW
GetRegionData
GetTextFaceA
GetTextMetricsW
IntersectClipRect
LineTo
MoveToEx
PolyBezierTo
RestoreDC
SaveDC
SelectClipPath
SelectObject
SetDIBitsToDevice
SetMiterLimit
SetPolyFillMode
SetStretchBltMode
StretchDIBits
StrokeAndFillPath
StrokePath
WidenPath
user32
FillRect
GetDC
ReleaseDC
Exports
Exports
FORM_CanRedo
FORM_CanUndo
FORM_DoDocumentAAction
FORM_DoDocumentJSAction
FORM_DoDocumentOpenAction
FORM_DoPageAAction
FORM_ForceToKillFocus
FORM_GetFocusedAnnot
FORM_GetFocusedText
FORM_GetSelectedText
FORM_IsIndexSelected
FORM_OnAfterLoadPage
FORM_OnBeforeClosePage
FORM_OnChar
FORM_OnFocus
FORM_OnKeyDown
FORM_OnKeyUp
FORM_OnLButtonDoubleClick
FORM_OnLButtonDown
FORM_OnLButtonUp
FORM_OnMouseMove
FORM_OnMouseWheel
FORM_OnRButtonDown
FORM_OnRButtonUp
FORM_Redo
FORM_ReplaceAndKeepSelection
FORM_ReplaceSelection
FORM_SelectAllText
FORM_SetFocusedAnnot
FORM_SetIndexSelected
FORM_Undo
FPDFAction_GetDest
FPDFAction_GetFilePath
FPDFAction_GetType
FPDFAction_GetURIPath
FPDFAnnot_AddInkStroke
FPDFAnnot_AppendAttachmentPoints
FPDFAnnot_AppendObject
FPDFAnnot_CountAttachmentPoints
FPDFAnnot_GetAP
FPDFAnnot_GetAttachmentPoints
FPDFAnnot_GetBorder
FPDFAnnot_GetColor
FPDFAnnot_GetFlags
FPDFAnnot_GetFocusableSubtypes
FPDFAnnot_GetFocusableSubtypesCount
FPDFAnnot_GetFontSize
FPDFAnnot_GetFormAdditionalActionJavaScript
FPDFAnnot_GetFormControlCount
FPDFAnnot_GetFormControlIndex
FPDFAnnot_GetFormFieldAlternateName
FPDFAnnot_GetFormFieldAtPoint
FPDFAnnot_GetFormFieldExportValue
FPDFAnnot_GetFormFieldFlags
FPDFAnnot_GetFormFieldName
FPDFAnnot_GetFormFieldType
FPDFAnnot_GetFormFieldValue
FPDFAnnot_GetInkListCount
FPDFAnnot_GetInkListPath
FPDFAnnot_GetLine
FPDFAnnot_GetLink
FPDFAnnot_GetLinkedAnnot
FPDFAnnot_GetNumberValue
FPDFAnnot_GetObject
FPDFAnnot_GetObjectCount
FPDFAnnot_GetOptionCount
FPDFAnnot_GetOptionLabel
FPDFAnnot_GetRect
FPDFAnnot_GetStringValue
FPDFAnnot_GetSubtype
FPDFAnnot_GetValueType
FPDFAnnot_GetVertices
FPDFAnnot_HasAttachmentPoints
FPDFAnnot_HasKey
FPDFAnnot_IsChecked
FPDFAnnot_IsObjectSupportedSubtype
FPDFAnnot_IsOptionSelected
FPDFAnnot_IsSupportedSubtype
FPDFAnnot_RemoveInkList
FPDFAnnot_RemoveObject
FPDFAnnot_SetAP
FPDFAnnot_SetAttachmentPoints
FPDFAnnot_SetBorder
FPDFAnnot_SetColor
FPDFAnnot_SetFlags
FPDFAnnot_SetFocusableSubtypes
FPDFAnnot_SetRect
FPDFAnnot_SetStringValue
FPDFAnnot_SetURI
FPDFAnnot_UpdateObject
FPDFAttachment_GetFile
FPDFAttachment_GetName
FPDFAttachment_GetStringValue
FPDFAttachment_GetValueType
FPDFAttachment_HasKey
FPDFAttachment_SetFile
FPDFAttachment_SetStringValue
FPDFAvail_Create
FPDFAvail_Destroy
FPDFAvail_GetDocument
FPDFAvail_GetFirstPageNum
FPDFAvail_IsDocAvail
FPDFAvail_IsFormAvail
FPDFAvail_IsLinearized
FPDFAvail_IsPageAvail
FPDFBitmap_Create
FPDFBitmap_CreateEx
FPDFBitmap_Destroy
FPDFBitmap_FillRect
FPDFBitmap_GetBuffer
FPDFBitmap_GetFormat
FPDFBitmap_GetHeight
FPDFBitmap_GetStride
FPDFBitmap_GetWidth
FPDFBookmark_Find
FPDFBookmark_GetAction
FPDFBookmark_GetCount
FPDFBookmark_GetDest
FPDFBookmark_GetFirstChild
FPDFBookmark_GetNextSibling
FPDFBookmark_GetTitle
FPDFCatalog_IsTagged
FPDFClipPath_CountPathSegments
FPDFClipPath_CountPaths
FPDFClipPath_GetPathSegment
FPDFDOC_ExitFormFillEnvironment
FPDFDOC_InitFormFillEnvironment
FPDFDest_GetDestPageIndex
FPDFDest_GetLocationInPage
FPDFDest_GetView
FPDFDoc_AddAttachment
FPDFDoc_CloseJavaScriptAction
FPDFDoc_DeleteAttachment
FPDFDoc_GetAttachment
FPDFDoc_GetAttachmentCount
FPDFDoc_GetJavaScriptAction
FPDFDoc_GetJavaScriptActionCount
FPDFDoc_GetPageMode
FPDFFont_Close
FPDFFont_GetAscent
FPDFFont_GetDescent
FPDFFont_GetFlags
FPDFFont_GetFontData
FPDFFont_GetFontName
FPDFFont_GetGlyphPath
FPDFFont_GetGlyphWidth
FPDFFont_GetIsEmbedded
FPDFFont_GetItalicAngle
FPDFFont_GetWeight
FPDFFormObj_CountObjects
FPDFFormObj_GetObject
FPDFGlyphPath_CountGlyphSegments
FPDFGlyphPath_GetGlyphPathSegment
FPDFImageObj_GetBitmap
FPDFImageObj_GetImageDataDecoded
FPDFImageObj_GetImageDataRaw
FPDFImageObj_GetImageFilter
FPDFImageObj_GetImageFilterCount
FPDFImageObj_GetImageMetadata
FPDFImageObj_GetImagePixelSize
FPDFImageObj_GetRenderedBitmap
FPDFImageObj_LoadJpegFile
FPDFImageObj_LoadJpegFileInline
FPDFImageObj_SetBitmap
FPDFImageObj_SetMatrix
FPDFJavaScriptAction_GetName
FPDFJavaScriptAction_GetScript
FPDFLink_CloseWebLinks
FPDFLink_CountQuadPoints
FPDFLink_CountRects
FPDFLink_CountWebLinks
FPDFLink_Enumerate
FPDFLink_GetAction
FPDFLink_GetAnnot
FPDFLink_GetAnnotRect
FPDFLink_GetDest
FPDFLink_GetLinkAtPoint
FPDFLink_GetLinkZOrderAtPoint
FPDFLink_GetQuadPoints
FPDFLink_GetRect
FPDFLink_GetTextRange
FPDFLink_GetURL
FPDFLink_LoadWebLinks
FPDFPageObjMark_CountParams
FPDFPageObjMark_GetName
FPDFPageObjMark_GetParamBlobValue
FPDFPageObjMark_GetParamIntValue
FPDFPageObjMark_GetParamKey
FPDFPageObjMark_GetParamStringValue
FPDFPageObjMark_GetParamValueType
FPDFPageObjMark_RemoveParam
FPDFPageObjMark_SetBlobParam
FPDFPageObjMark_SetIntParam
FPDFPageObjMark_SetStringParam
FPDFPageObj_AddMark
FPDFPageObj_CountMarks
FPDFPageObj_CreateNewPath
FPDFPageObj_CreateNewRect
FPDFPageObj_CreateTextObj
FPDFPageObj_Destroy
FPDFPageObj_GetBounds
FPDFPageObj_GetClipPath
FPDFPageObj_GetDashArray
FPDFPageObj_GetDashCount
FPDFPageObj_GetDashPhase
FPDFPageObj_GetFillColor
FPDFPageObj_GetLineCap
FPDFPageObj_GetLineJoin
FPDFPageObj_GetMark
FPDFPageObj_GetMatrix
FPDFPageObj_GetRotatedBounds
FPDFPageObj_GetStrokeColor
FPDFPageObj_GetStrokeWidth
FPDFPageObj_GetType
FPDFPageObj_HasTransparency
FPDFPageObj_NewImageObj
FPDFPageObj_NewTextObj
FPDFPageObj_RemoveMark
FPDFPageObj_SetBlendMode
FPDFPageObj_SetDashArray
FPDFPageObj_SetDashPhase
FPDFPageObj_SetFillColor
FPDFPageObj_SetLineCap
FPDFPageObj_SetLineJoin
FPDFPageObj_SetMatrix
FPDFPageObj_SetStrokeColor
FPDFPageObj_SetStrokeWidth
FPDFPageObj_Transform
FPDFPageObj_TransformClipPath
FPDFPage_CloseAnnot
FPDFPage_CountObjects
FPDFPage_CreateAnnot
FPDFPage_Delete
FPDFPage_Flatten
FPDFPage_FormFieldZOrderAtPoint
FPDFPage_GenerateContent
FPDFPage_GetAnnot
FPDFPage_GetAnnotCount
FPDFPage_GetAnnotIndex
FPDFPage_GetArtBox
FPDFPage_GetBleedBox
FPDFPage_GetCropBox
FPDFPage_GetDecodedThumbnailData
FPDFPage_GetMediaBox
FPDFPage_GetObject
FPDFPage_GetRawThumbnailData
FPDFPage_GetRotation
FPDFPage_GetThumbnailAsBitmap
FPDFPage_GetTrimBox
FPDFPage_HasFormFieldAtPoint
FPDFPage_HasTransparency
FPDFPage_InsertClipPath
FPDFPage_InsertObject
FPDFPage_New
FPDFPage_RemoveAnnot
FPDFPage_RemoveObject
FPDFPage_SetArtBox
FPDFPage_SetBleedBox
FPDFPage_SetCropBox
FPDFPage_SetMediaBox
FPDFPage_SetRotation
FPDFPage_SetTrimBox
FPDFPage_TransFormWithClip
FPDFPage_TransformAnnots
FPDFPathSegment_GetClose
FPDFPathSegment_GetPoint
FPDFPathSegment_GetType
FPDFPath_BezierTo
FPDFPath_Close
FPDFPath_CountSegments
FPDFPath_GetDrawMode
FPDFPath_GetPathSegment
FPDFPath_LineTo
FPDFPath_MoveTo
FPDFPath_SetDrawMode
FPDFSignatureObj_GetByteRange
FPDFSignatureObj_GetContents
FPDFSignatureObj_GetDocMDPPermission
FPDFSignatureObj_GetReason
FPDFSignatureObj_GetSubFilter
FPDFSignatureObj_GetTime
FPDFTextObj_GetFont
FPDFTextObj_GetFontSize
FPDFTextObj_GetRenderedBitmap
FPDFTextObj_GetText
FPDFTextObj_GetTextRenderMode
FPDFTextObj_SetTextRenderMode
FPDFText_ClosePage
FPDFText_CountChars
FPDFText_CountRects
FPDFText_FindClose
FPDFText_FindNext
FPDFText_FindPrev
FPDFText_FindStart
FPDFText_GetBoundedText
FPDFText_GetCharAngle
FPDFText_GetCharBox
FPDFText_GetCharIndexAtPos
FPDFText_GetCharIndexFromTextIndex
FPDFText_GetCharOrigin
FPDFText_GetFillColor
FPDFText_GetFontInfo
FPDFText_GetFontSize
FPDFText_GetFontWeight
FPDFText_GetLooseCharBox
FPDFText_GetMatrix
FPDFText_GetRect
FPDFText_GetSchCount
FPDFText_GetSchResultIndex
FPDFText_GetStrokeColor
FPDFText_GetText
FPDFText_GetTextIndexFromCharIndex
FPDFText_GetTextRenderMode
FPDFText_GetUnicode
FPDFText_HasUnicodeMapError
FPDFText_IsGenerated
FPDFText_IsHyphen
FPDFText_LoadFont
FPDFText_LoadPage
FPDFText_LoadStandardFont
FPDFText_SetCharcodes
FPDFText_SetText
FPDF_AddInstalledFont
FPDF_CloseDocument
FPDF_ClosePage
FPDF_CloseXObject
FPDF_CopyViewerPreferences
FPDF_CountNamedDests
FPDF_CreateClipPath
FPDF_CreateNewDocument
FPDF_DestroyClipPath
FPDF_DestroyLibrary
FPDF_DeviceToPage
FPDF_DocumentHasValidCrossReferenceTable
FPDF_FFLDraw
FPDF_FreeDefaultSystemFontInfo
FPDF_GetDefaultSystemFontInfo
FPDF_GetDefaultTTFMap
FPDF_GetDocPermissions
FPDF_GetDocUserPermissions
FPDF_GetFileIdentifier
FPDF_GetFileVersion
FPDF_GetFormType
FPDF_GetLastError
FPDF_GetMetaText
FPDF_GetNamedDest
FPDF_GetNamedDestByName
FPDF_GetPageAAction
FPDF_GetPageBoundingBox
FPDF_GetPageCount
FPDF_GetPageHeight
FPDF_GetPageHeightF
FPDF_GetPageLabel
FPDF_GetPageSizeByIndex
FPDF_GetPageSizeByIndexF
FPDF_GetPageWidth
FPDF_GetPageWidthF
FPDF_GetSecurityHandlerRevision
FPDF_GetSignatureCount
FPDF_GetSignatureObject
FPDF_GetTrailerEnds
FPDF_GetXFAPacketContent
FPDF_GetXFAPacketCount
FPDF_GetXFAPacketName
FPDF_ImportNPagesToOne
FPDF_ImportPages
FPDF_ImportPagesByIndex
FPDF_InitLibrary
FPDF_InitLibraryWithConfig
FPDF_LoadCustomDocument
FPDF_LoadDocument
FPDF_LoadMemDocument
FPDF_LoadMemDocument64
FPDF_LoadPage
FPDF_LoadXFA
FPDF_MovePages
FPDF_NewFormObjectFromXObject
FPDF_NewXObjectFromPage
FPDF_PageToDevice
FPDF_RemoveFormFieldHighlight
FPDF_RenderPage
FPDF_RenderPageBitmap
FPDF_RenderPageBitmapWithColorScheme_Start
FPDF_RenderPageBitmapWithMatrix
FPDF_RenderPageBitmap_Start
FPDF_RenderPage_Close
FPDF_RenderPage_Continue
FPDF_SaveAsCopy
FPDF_SaveWithVersion
FPDF_SetFormFieldHighlightAlpha
FPDF_SetFormFieldHighlightColor
FPDF_SetPrintMode
FPDF_SetSandBoxPolicy
FPDF_SetSystemFontInfo
FPDF_StructElement_Attr_GetBlobValue
FPDF_StructElement_Attr_GetBooleanValue
FPDF_StructElement_Attr_GetCount
FPDF_StructElement_Attr_GetName
FPDF_StructElement_Attr_GetNumberValue
FPDF_StructElement_Attr_GetStringValue
FPDF_StructElement_Attr_GetType
FPDF_StructElement_CountChildren
FPDF_StructElement_GetActualText
FPDF_StructElement_GetAltText
FPDF_StructElement_GetAttributeAtIndex
FPDF_StructElement_GetAttributeCount
FPDF_StructElement_GetChildAtIndex
FPDF_StructElement_GetID
FPDF_StructElement_GetLang
FPDF_StructElement_GetMarkedContentID
FPDF_StructElement_GetMarkedContentIdAtIndex
FPDF_StructElement_GetMarkedContentIdCount
FPDF_StructElement_GetObjType
FPDF_StructElement_GetParent
FPDF_StructElement_GetStringAttribute
FPDF_StructElement_GetTitle
FPDF_StructElement_GetType
FPDF_StructTree_Close
FPDF_StructTree_CountChildren
FPDF_StructTree_GetChildAtIndex
FPDF_StructTree_GetForPage
FPDF_VIEWERREF_GetDuplex
FPDF_VIEWERREF_GetName
FPDF_VIEWERREF_GetNumCopies
FPDF_VIEWERREF_GetPrintPageRange
FPDF_VIEWERREF_GetPrintPageRangeCount
FPDF_VIEWERREF_GetPrintPageRangeElement
FPDF_VIEWERREF_GetPrintScaling
FSDK_SetLocaltimeFunction
FSDK_SetTimeFunction
FSDK_SetUnSpObjProcessHandler
Sections
.text Size: 2.4MB - Virtual size: 2.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.8MB - Virtual size: 1.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 22KB - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: 512B - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 161B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
malloc_h Size: 512B - Virtual size: 243B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 920B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 74KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ