SCardDlg[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

SCardDlg.dll
Size

64KB
MD5

439300b0d0f2efdce614664b295b76ce
SHA1

4b4bf0d4bb6d3166333011ff4963cd70e8684c59
SHA256

644423a425f17ca3dc903ace5075cd21a6170e1ea435031fa5d59ccaf464d420
SHA512

5f9adf22745fe223a251355a4caaba1803f1a9c090a60aa1336c7ce70d25727c5f453b43dded4b99a38cbffc73aa2cb84dc93aa564517ad210eeae400693b550
SSDEEP

768:EyyMwojsZMTqGln54wywqLw3p10ditN/uHhprzFgn33I1Z6jFkeTq3/m7yOEGAGo:EVMwTZM+GcwywJCd4x2hh0IjkFwvIz4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SCardDlg.dll

Files

SCardDlg.dll
.dll windows:6 windows x86 arch:x86

6453101d6b3626a617a49e3b5a40f0e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

SCardDlg.pdb

Imports

mfc42u

ord2717
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord815
ord641
ord942
ord940
ord537
ord818
ord2455
ord2506
ord1644
ord6466
ord567
ord2809
ord1165
ord3133
ord2078
ord3569
ord4621
ord3397
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord5237
ord4390
ord1768
ord4073
ord6051
ord2567
ord609
ord1143
ord3635
ord3365
ord4074
ord2574
ord693
ord543
ord500
ord3696
ord2634
ord2294
ord4229
ord860
ord6195
ord858
ord4155
ord3087
ord4219
ord6193
ord6211
ord4847
ord324
ord3592
ord4419
ord5276
ord4401
ord1767
ord6048
ord4992
ord4370
ord5261
ord4704
ord2859
ord3605
ord656
ord4270
ord6451
ord2400
ord6278
ord2857
ord384
ord686
ord2445
ord2088
ord5977
ord6896
ord6238
ord3281
ord600
ord1571
ord1250
ord1248
ord1563
ord1194
ord1240
ord342
ord1179
ord1570
ord1568
ord1173
ord1115
ord269
ord826
ord4692
ord5303
ord5285
ord5710
ord2977
ord3142
ord3254
ord4459
ord3131
ord3257
ord2980
ord3076
ord2971
ord3825
ord3826
ord3820
ord3074
ord4075
ord4616
ord4418
ord3733
ord561
ord4269
ord2910
ord5568
ord1105
ord2606
ord823
ord772
ord540
ord861
ord800
ord825
ord3579
ord803
ord5856
ord6928
ord4396
ord6138

msvcrt

_onexit
_lock
__dllonexit
_unlock
??1type_info@@UAE@XZ
_amsg_exit
_initterm
free
malloc
_XcptFilter
_CxxThrowException
memset
??_U@YAPAXI@Z
??_V@YAXPAX@Z
memcpy
__CxxFrameHandler3
_except_handler4_common

winscard

SCardListReadersA
SCardLocateCardsW
SCardGetStatusChangeA
SCardConnectW
SCardConnectA
SCardDisconnect
SCardListCardsA
SCardEstablishContext
SCardCancel
SCardReleaseContext
SCardGetStatusChangeW
SCardListCardsW
SCardListReadersW
SCardFreeMemory
SCardLocateCardsA

comctl32

ImageList_ReplaceIcon

user32

SetWindowContextHelpId
EnableWindow
LoadIconW
WinHelpW
SendMessageW
ScreenToClient
GetWindowRect
PostMessageW
GetParent
SetForegroundWindow

kernel32

EnterCriticalSection
ResumeThread
LeaveCriticalSection
TerminateThread
lstrlenW
WaitForSingleObject
GetLastError
WideCharToMultiByte
MultiByteToWideChar
DisableThreadLibraryCalls
HeapFree
HeapAlloc
GetProcessHeap
GetACP
lstrlenA
InitializeCriticalSection
Sleep
LocalFree
LocalAlloc
InterlockedExchange
InterlockedCompareExchange
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
DeleteCriticalSection

setupapi

CMP_WaitNoPendingInstallEvents

Exports

Exports

GetOpenCardNameA
GetOpenCardNameW
SCardDlgExtendedError
SCardUIDlgSelectCardA
SCardUIDlgSelectCardW

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6453101d6b3626a617a49e3b5a40f0e2

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mfc42u

msvcrt

winscard

comctl32

user32

kernel32

setupapi

Exports

Exports

Sections

.text Size: 33KB - Virtual size: 32KB

.data Size: 1024B - Virtual size: 9KB

.rsrc Size: 26KB - Virtual size: 25KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 33KB - Virtual size: 32KB

.data
Size: 1024B - Virtual size: 9KB

.rsrc
Size: 26KB - Virtual size: 25KB

.reloc
Size: 3KB - Virtual size: 3KB