HVMRuntm10[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

HVMRuntm10.dll
Size

1.8MB
MD5

8381f05679cb8673133bcd522c1947d5
SHA1

5e39135c2ca140dc2ceec443f02792250282da6e
SHA256

824e1edab7771caf853fd83b70c7e7b9b709702d37c56af9d1dd88755169d144
SHA512

c9e129d0c73e2223fcc6c345bbd65587addd47679c8b4e34ef472ce66b0f5a221a7886b5f0dc832422df4bf49c71a327fdf72c8608a7492b2cda0e5850e58fa8
SSDEEP

49152:Iemgvwb4ZiuQsMKww8UlbotK5v+pR4VRRxm:IVgvs4ZiC8UXORQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HVMRuntm10.dll

Files

HVMRuntm10.dll
.dll windows:4 windows x86 arch:x86

8b180f601b15d085fc21cc3246d9e50b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentProcess
GetModuleFileNameA
ReadFile
CloseHandle
CreateFileA
InitializeCriticalSection
GetModuleHandleA
InterlockedDecrement
IsBadReadPtr
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
WideCharToMultiByte
FreeLibrary
GetProcAddress
LoadLibraryA
WaitForSingleObject
GetCurrentThreadId
CreateEventA
DisableThreadLibraryCalls
lstrcatA
VirtualProtect
lstrlenA
GetTickCount
Sleep
SetEvent
GetVolumeInformationA
GetWindowsDirectoryA
SetEnvironmentVariableA
GetCurrentProcessId
InterlockedExchange
MultiByteToWideChar
GetLastError
CompareStringA
CompareStringW
InterlockedIncrement
HeapFree
GetProcessHeap
SetFilePointer
QueryPerformanceCounter
GetEnvironmentStringsW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
VirtualQuery
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetStdHandle
GetConsoleMode
GetConsoleCP
HeapCreate
VirtualFree
WriteFile
IsValidCodePage
GetOEMCP
GetCPInfo
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetTimeZoneInformation
SetLastError
TlsFree
TlsSetValue
TlsAlloc
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
FlushFileBuffers
HeapDestroy
HeapAlloc
HeapReAlloc
HeapSize
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
GetSystemTimeAsFileTime
ExitThread
ResumeThread
CreateThread
ExitProcess
VirtualAlloc
GetCommandLineA
TlsGetValue

user32

MessageBoxA
UnregisterClassA
wsprintfA

advapi32

RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

oleaut32

SysAllocString
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayDestroyDescriptor
SafeArrayCreate
VariantCopyInd
VariantChangeType
SysStringLen
SafeArrayUnlock
SafeArrayLock
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
SafeArrayDestroy
VariantClear
VariantInit
SysFreeString
SysStringByteLen
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayUnaccessData
GetErrorInfo
SysAllocStringByteLen

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Exports

Exports

GetUserString
VMRuntime

Sections

.text
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hvm0
Size: 1.4MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1010B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b180f601b15d085fc21cc3246d9e50b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

version

Exports

Exports

Sections

.text Size: 260KB - Virtual size: 258KB

.rdata Size: 84KB - Virtual size: 80KB

.data Size: 92KB - Virtual size: 99KB

.hvm0 Size: 1.4MB - Virtual size: 1.3MB

.reloc Size: 32KB - Virtual size: 28KB

.rsrc Size: 4KB - Virtual size: 1010B

.text
Size: 260KB - Virtual size: 258KB

.rdata
Size: 84KB - Virtual size: 80KB

.data
Size: 92KB - Virtual size: 99KB

.hvm0
Size: 1.4MB - Virtual size: 1.3MB

.reloc
Size: 32KB - Virtual size: 28KB

.rsrc
Size: 4KB - Virtual size: 1010B