mexFunction
Static task
static1
Behavioral task
behavioral1
Sample
5f37a1469513338023dd31df5920fc65fbb57d4961f4c33f4a8eba60f036de78.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
5f37a1469513338023dd31df5920fc65fbb57d4961f4c33f4a8eba60f036de78.dll
Resource
win10v2004-20240426-en
General
-
Target
5f37a1469513338023dd31df5920fc65fbb57d4961f4c33f4a8eba60f036de78
-
Size
4KB
-
MD5
fbdd6defa0ea31f0c1370281c0a5cd51
-
SHA1
d2e52920ddec5898e4cbdd73c2ada70427f9265a
-
SHA256
5f37a1469513338023dd31df5920fc65fbb57d4961f4c33f4a8eba60f036de78
-
SHA512
7e7f638e32c964fd11eb1c3d36e04eb1fa18b05bbf7da395213a4fd8c9a91e4ecd5aefb44219f9b70effd1e9863df0f1d5be7ba131543d9d65281c0265d49b70
-
SSDEEP
96:TbIt1SfoMcU+cwr6bg8V2v1efVlEkn8RFWW:TbQsbavYlEkn8RF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5f37a1469513338023dd31df5920fc65fbb57d4961f4c33f4a8eba60f036de78
Files
-
5f37a1469513338023dd31df5920fc65fbb57d4961f4c33f4a8eba60f036de78.dll windows:4 windows x86 arch:x86
fd95ded1212bfe8846cd7b7d251bd744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
sysgen_bootstrap
load_sysgen_libraries
msvcr71
__dllonexit
_except_handler3
__CppXcptFilter
_adjust_fdiv
malloc
_initterm
free
_onexit
kernel32
RaiseException
LoadLibraryA
InterlockedExchange
FreeLibrary
GetProcAddress
LocalAlloc
DisableThreadLibraryCalls
GetLastError
Exports
Exports
Sections
.text Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 963B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 64B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 254B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ