haspdnert[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

haspdnert.dll
Size

588KB
MD5

a3f60ea4b8777713c2455891c55cc8a4
SHA1

df17fdaeffaf447a1ebe4e61fba75bfe31262b85
SHA256

d986468f49aab1de962f707d73fc8eddbd0eb4e6ab6b4e0478614a6adb828489
SHA512

e607ee84611a5a59770bf56995cd7289f9ee01ce734fbe19abe77eb83620461f343a4a96ebe5ce544aaf059184183487586790d97eff29eeef21924272aac0ba
SSDEEP

12288:Xmk/lV/fwjzmV37IcaF4umhLVjfgFbMo/lZVcOm0d62M:XHr/fXMjFcBfgFYGLmL2M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
haspdnert.dll

Files

haspdnert.dll
.dll windows:4 windows x86 arch:x86

44da45442d6d34ae5c77ac13ec8e730b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapFree
VirtualFree
GetCurrentThreadId
HeapAlloc
GetModuleHandleA
GetProcAddress
TlsGetValue
TlsSetValue
TlsFree
GetEnvironmentStringsW
GetModuleFileNameA
GetLastError
UnhandledExceptionFilter
RtlUnwind
GetCurrentProcess
TerminateProcess
DeleteCriticalSection
TlsAlloc
WideCharToMultiByte
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
CreateToolhelp32Snapshot
Thread32First
CloseHandle
SetLastError
VirtualQuery
InterlockedExchange
EnterCriticalSection
InitializeCriticalSection
GetStartupInfoA
GetOEMCP
OpenThread
ResumeThread
LeaveCriticalSection
ExitProcess
GetEnvironmentStrings
GetFileType
GetACP
Thread32Next
SuspendThread
FreeEnvironmentStringsA
SetHandleCount
GetCommandLineA
GetCPInfo
WriteFile
LoadLibraryA
HeapSize
FlushFileBuffers
GetProcessHeap
GetStringTypeW
LCMapStringW
HeapReAlloc
FreeLibrary
InterlockedIncrement
InterlockedCompareExchange
OutputDebugStringA
MultiByteToWideChar
LCMapStringA
GetSystemInfo
GetCurrentDirectoryA
VirtualAlloc
VirtualProtect
GetLocaleInfoA
GetStringTypeA
SetFilePointer
SetStdHandle
FindFirstFileW
FindNextFileW
FindClose
LoadLibraryW
CompareStringW
GetModuleFileNameW
GetSystemDirectoryW
GetWindowsDirectoryW
GetCurrentDirectoryW
GetEnvironmentVariableW
IsBadReadPtr
GetDriveTypeW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameW
GetTimeZoneInformation
GetDriveTypeA
SetEnvironmentVariableA
CompareStringA
GetSystemTime
SystemTimeToFileTime
HeapDestroy
HeapCreate
GetStdHandle
GetVersionExA

user32

GetWindowLongA
SetWindowLongA
EnumWindows
DefWindowProcA
GetWindowThreadProcessId

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Exports

Exports

haspdnert_dispatch

Sections

.text
Size: 508KB - Virtual size: 506KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44da45442d6d34ae5c77ac13ec8e730b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 508KB - Virtual size: 506KB

.rdata Size: 36KB - Virtual size: 34KB

.data Size: 24KB - Virtual size: 22KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 508KB - Virtual size: 506KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 24KB - Virtual size: 22KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 9KB