658ff047fa5e12dac57204c18a3cd9ef0301708b9444815c34c2f705a156607b

Sharing

Copy URL Twitter E-mail

General

Target

658ff047fa5e12dac57204c18a3cd9ef0301708b9444815c34c2f705a156607b
Size

31KB
MD5

927b85748966fc47333d01a028f32d16
SHA1

3bb38370014daf954d1145a656290a9963f954fb
SHA256

658ff047fa5e12dac57204c18a3cd9ef0301708b9444815c34c2f705a156607b
SHA512

40cca3e7daab4c01a61fe34f62b86d515df6b13343e7607e396462648e7309984cf0863104afb09b7e933fb9484c24a5608049cce76add971e81c0fb85ae256d
SSDEEP

768:qyC1Bp55sdR05oXdB9F4WwzjPyQXuVM9QJDJ/I:qyGOX4DyQXuLJDJw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
658ff047fa5e12dac57204c18a3cd9ef0301708b9444815c34c2f705a156607b

Files

658ff047fa5e12dac57204c18a3cd9ef0301708b9444815c34c2f705a156607b
.dll windows:4 windows x86 arch:x86

66ddd3e8f875f8cd643ef2bd848c818b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
TlsGetValue
VirtualProtect
VirtualQuery

libmingwex-4

__fpclassify
__mingw_free
acosh
asinh
atanh
cbrt
erf
erfc
exp2
expm1
ilogb
lgamma
log1p
log2
remainder
remquo
round
tgamma

msvcrt

_hypot
__dllonexit
_errno
_iob
abort
acos
asin
atan
calloc
cos
cosh
exp
fflush
fmod
frexp
fwrite
ldexp
log
log10
malloc
memcmp
memset
modf
pow
sin
sinh
sqrt
strcmp
strlen
tan
tanh
vfprintf

agena

agnL_optboolean
agnL_optnonnegint
agnL_optposint
agn_checklstring
agn_checknumber
agn_checkstring
agn_createseq
agn_poptop
agn_strmatch
asm_memset
luaL_checknumber
luaL_error
luaL_optlstring
luaL_register
lua_pushboolean
lua_pushinteger
lua_pushlstring
lua_pushnil
lua_pushnumber
lua_pushstring
lua_pushundefined
lua_seqseti
str_charreplace
sun_acosh
sun_asinh
sun_atanh
sun_cos
sun_cosh
sun_erf
sun_erfc
sun_exp
sun_fmod
sun_frac
sun_log
sun_log10
sun_log2
sun_pow
sun_sin
sun_sinh
sun_tan
sun_tanh
tools_examul
tools_exp10_9
tools_exp2_9
tools_hasstrchr
tools_isfinite
tools_isfrac
tools_isinf
tools_isint
tools_isnan
tools_isnanorinf
tools_isnonnegint
tools_isnonposint
tools_memcmp
tools_strcmp
tools_strlen
tools_strndup
tools_strsep

Exports

Exports

luaopen_testlib

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 100B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 78B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66ddd3e8f875f8cd643ef2bd848c818b

Headers

File Characteristics

Imports

kernel32

libmingwex-4

msvcrt

agena

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 8B

.rdata Size: 2KB - Virtual size: 2KB

/4 Size: 4KB - Virtual size: 4KB

.bss Size: - Virtual size: 100B

.edata Size: 512B - Virtual size: 78B

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.reloc Size: 1024B - Virtual size: 956B

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 8B

.rdata
Size: 2KB - Virtual size: 2KB

/4
Size: 4KB - Virtual size: 4KB

.bss
Size: - Virtual size: 100B

.edata
Size: 512B - Virtual size: 78B

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B

.reloc
Size: 1024B - Virtual size: 956B