HVMRuntm73[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

HVMRuntm73.dll
Size

924KB
MD5

8bcf332c04fb4438a7909552478c79c2
SHA1

b63aff9264340ac21d5b10ec18e2d93f61ace89f
SHA256

c0dc5bd0890dd648f90de2013dd9620aaccad471a53493dc7a189494b23e974e
SHA512

ee8fe714072d98a188d40c6a7c721ce865423f1e2baa20726f180a25847c8fa759b4b5037776e2711ee98d26ae59514aea463464de18209a2fd1f2afe7f35644
SSDEEP

24576:ITqAPgsSy8BMkz3VEj9EMDCsFnamYY0ZatMe79U8:+aJy8B5JO9pHnaBYNtJ7C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HVMRuntm73.dll

Files

HVMRuntm73.dll
.dll windows:4 windows x86 arch:x86

79de0723562b8fe6caec8750aff5c6f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadFile
CreateFileA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
FreeLibrary
GetProcAddress
LoadLibraryA
WaitForSingleObject
CloseHandle
CreateEventA
DisableThreadLibraryCalls
lstrcatA
IsBadReadPtr
lstrlenA
VirtualProtect
Sleep
SetEvent
SetEnvironmentVariableA
GetCurrentProcessId
InterlockedExchange
MultiByteToWideChar
GetModuleHandleA
GetLastError
InterlockedIncrement
LocalFree
InterlockedDecrement
SetFilePointer
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
IsBadWritePtr
GetStringTypeW
GetStringTypeA
LCMapStringW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetModuleFileNameA
GetCurrentProcess
WideCharToMultiByte
VirtualQuery
LCMapStringA
FlushFileBuffers
SetStdHandle
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetConsoleMode
GetConsoleCP
HeapCreate
VirtualFree
GetOEMCP
GetCPInfo
GetStartupInfoA
GetFileType
SetHandleCount
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
RaiseException
RtlUnwind
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitThread
ResumeThread
CreateThread
VirtualAlloc
GetCurrentThreadId
GetCommandLineA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
WriteFile
GetStdHandle

user32

MessageBoxA
wsprintfA
UnregisterClassA

advapi32

RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

oleaut32

SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetElement
SafeArrayDestroyDescriptor
SysStringByteLen
SysAllocStringByteLen
SafeArrayDestroy
SafeArrayCreate
VariantCopyInd
VariantChangeType
VariantClear
VariantInit
SysFreeString
SysStringLen
SafeArrayLock
SafeArrayGetUBound
SafeArrayGetLBound
GetErrorInfo
SysAllocString
SafeArrayUnlock

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Exports

Exports

CheckRuntime
DNG_Runtime
GetUserString
RunHVM

Sections

.text
Size: 176KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hvm
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hvm0
Size: 632KB - Virtual size: 631KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79de0723562b8fe6caec8750aff5c6f4

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

version

Exports

Exports

Sections

.text Size: 176KB - Virtual size: 173KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 20KB - Virtual size: 27KB

.hvm Size: 4KB - Virtual size: 8B

.hvm0 Size: 632KB - Virtual size: 631KB

.reloc Size: 24KB - Virtual size: 21KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 176KB - Virtual size: 173KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 20KB - Virtual size: 27KB

.hvm
Size: 4KB - Virtual size: 8B

.hvm0
Size: 632KB - Virtual size: 631KB

.reloc
Size: 24KB - Virtual size: 21KB

.rsrc
Size: 4KB - Virtual size: 1KB