fnProcess
Static task
static1
General
-
Target
jpeg1x32.dll_C2BA81C0DE01038A54703DE26B18E9EE
-
Size
31KB
-
MD5
c2ba81c0de01038a54703de26b18e9ee
-
SHA1
5e7833fa8edc069443bb1239de3291aa1e3fc9c8
-
SHA256
59979d3bc3d64500898f3c1fda833cc0f87db36b65f1bb4631e2ac1b232c8aad
-
SHA512
d4e972565f47241550b500f3a65ff33bb4b4eb0d8f35957d20c8fae791abc552e05e6a0297562bfec8e34b76c832d15e090db9eeb17fb06ccd6533cd391190c5
-
SSDEEP
768:euqA0/5CDYnY/1rhbAxZXUYJlxqyd3azWQp8jcI:ebA0s/hhkfDxj+pOcI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource jpeg1x32.dll_C2BA81C0DE01038A54703DE26B18E9EE
Files
-
jpeg1x32.dll_C2BA81C0DE01038A54703DE26B18E9EE.dll windows:5 windows x86 arch:x86
52660550aa2ac90863c1cfb4fd3ab2f8
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
msvcrt
wcstombs
_wtoi
wcsncpy
malloc
_adjust_fdiv
_initterm
free
_snprintf
strstr
kernel32
GetDiskFreeSpaceA
lstrcmpiA
QueryDosDeviceA
GlobalAlloc
GlobalFree
lstrlenA
LoadLibraryA
FreeLibrary
GetProcAddress
lstrcpyA
ExpandEnvironmentStringsA
lstrcatA
GetVersionExA
CloseHandle
GetVolumeInformationA
WriteFile
SetFilePointer
ReadFile
HeapAlloc
GetProcessHeap
GetFileSize
CreateFileA
GetWindowsDirectoryA
GetShortPathNameA
MoveFileExA
DeleteFileA
GetModuleFileNameA
Sleep
GetSystemDirectoryA
MultiByteToWideChar
SystemTimeToFileTime
GetDriveTypeA
GetLogicalDriveStringsA
GlobalMemoryStatus
CompareFileTime
HeapFree
DefineDosDeviceA
DeviceIoControl
GetTimeZoneInformation
WideCharToMultiByte
GetLastError
FileTimeToSystemTime
lstrcmpA
FindClose
FindNextFileA
FindFirstFileA
SetCurrentDirectoryA
GetCurrentDirectoryA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetSystemInfo
user32
wsprintfA
CharUpperBuffA
wvsprintfA
GetKeyboardLayoutNameA
advapi32
RegDeleteKeyA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegEnumValueA
RegQueryInfoKeyA
RegQueryValueExA
ws2_32
ntohl
htons
htonl
inet_ntoa
Exports
Exports
Sections
.text Size: 26KB - Virtual size: 26KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 816B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ