33149b2a6e6ab7e8f18110088f3a56cc8b7f7b3393cf346b0f5ed2bea68808cd

Sharing

Copy URL

Twitter E-mail

General

Target

33149b2a6e6ab7e8f18110088f3a56cc8b7f7b3393cf346b0f5ed2bea68808cd
Size

22KB
MD5

02755450b0951fce07a4abeec378471b
SHA1

fceb62d91998498cac17b0bee5ec68b1102f463a
SHA256

33149b2a6e6ab7e8f18110088f3a56cc8b7f7b3393cf346b0f5ed2bea68808cd
SHA512

1fe9a6b7555144d163219e41da58caed54900cb4b417f7b72cb5152f40b3483c597c14f45bb209f869f0d68280b42bec03e5500f931125b2043ec72e7a78a9c8
SSDEEP

384:wNnnwS2dDiEC4xRrlW4T3LGL5CwMTwQ5NRyvaJHCj9XOOtuZOPYKNZhEVhrv:wN6iB4xNEge5q5bua5WXOOtugPfNIh7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33149b2a6e6ab7e8f18110088f3a56cc8b7f7b3393cf346b0f5ed2bea68808cd

Files

33149b2a6e6ab7e8f18110088f3a56cc8b7f7b3393cf346b0f5ed2bea68808cd
.dll windows:6 windows x86 arch:x86

7b78bcb1f595f23eea551e7b1940e17a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

timeGetTime

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
lstrlenW
lstrcpynW
WaitForMultipleObjects
WaitForSingleObject
GetCurrentThreadId
CreateEventW
SetEvent
CloseHandle
LoadLibraryW
CreateThread
ResetEvent
GetProcAddress
GetModuleHandleW
FreeLibrary
QueryPerformanceCounter
GetTickCount
MulDiv
DisableThreadLibraryCalls
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentProcessId
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess

user32

DefWindowProcW
GetMessageW
UnregisterClassW
DestroyWindow
DispatchMessageW
TranslateMessage
GetClassNameW
PostThreadMessageW
RegisterClassExW
CreateWindowExW

vcruntime140

memcpy
_except_handler4_common
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
__std_exception_copy
__std_terminate
_purecall
__CxxFrameHandler3
memset

api-ms-win-crt-string-l1-1-0

wcsncat_s
wcsncpy_s

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswscanf
__stdio_common_vsnwprintf_s

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
free
realloc

api-ms-win-crt-runtime-l1-1-0

_execute_onexit_table
_initterm_e
_initterm
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_cexit
_seh_filter_dll

api-ms-win-crt-math-l1-1-0

_libm_sse2_log10_precise

Exports

Exports

kpi_CreateInstance

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b78bcb1f595f23eea551e7b1940e17a

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

vcruntime140

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 1024B - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 1024B - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB