api-ms-win-ntuser-ie-window-l1-1-0[.]dll

General

Target

api-ms-win-ntuser-ie-window-l1-1-0.dll
Size

4KB
MD5

2f804790929b1a6ae95ddc1b53f6465b
SHA1

e60f2c40cc72e31e7b92706552faa2e29c26dfbf
SHA256

f81f82fb8727119b462356502eb54827196422f1246a6991d97e106d176d007d
SHA512

b3b243db3a13c5450fead60775cae19dfc0ef6462e33fc17900c96a98da934ee477748ababd697211d82b5d91800a77fb9de0fac4af7a978bbca3a5492ea44e0
SSDEEP

48:6yNDsCALLJF6CIzCZgaNw03ggx/kE0GIZWUnfBI56h/5Wwa:xNOaCNw4gc/kqEW4UohWw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
api-ms-win-ntuser-ie-window-l1-1-0.dll

Files

api-ms-win-ntuser-ie-window-l1-1-0.dll
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

api-ms-win-ntuser-ie-window-l1-1-0.pdb

Exports

Exports

AllowSetForegroundWindow
BeginDeferWindowPos
CallWindowProcW
ChildWindowFromPoint
ChildWindowFromPointEx
ClientToScreen
CreateWindowExW
DefWindowProcW
DeferWindowPos
DestroyWindow
EnableWindow
EndDeferWindowPos
EnumChildWindows
EnumWindows
FindWindowExW
FindWindowW
GetActiveWindow
GetAncestor
GetClassInfoExW
GetClassInfoW
GetClassNameW
GetClientRect
GetCursorPos
GetDesktopWindow
GetFocus
GetForegroundWindow
GetParent
GetPropW
GetTopWindow
GetWindow
GetWindowLongA
GetWindowLongPtrA
GetWindowLongPtrW
GetWindowLongW
GetWindowRect
GetWindowTextW
GetWindowThreadProcessId
IsChild
IsWindow
IsWindowEnabled
IsWindowVisible
KillTimer
MoveWindow
RegisterClassExW
RegisterClassW
RemovePropW
SetActiveWindow
SetCursorPos
SetFocus
SetForegroundWindow
SetParent
SetPropW
SetTimer
SetWindowLongA
SetWindowLongPtrA
SetWindowLongPtrW
SetWindowLongW
SetWindowPos
SetWindowTextW
ShowWindow
UnregisterClassW
WindowFromPoint

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

PDB Paths

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 1008B

.reloc Size: 512B - Virtual size: 26B

.text
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 1008B

.reloc
Size: 512B - Virtual size: 26B