UserLanguageProfileCallback[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

UserLanguageProfileCallback.dll
Size

10KB
MD5

75ed6e80eafe54aa2ee569acf97b91ad
SHA1

0a9b6c5708235fae9712783a3993d939cb6335e1
SHA256

1cc66e4f999a12fab07dd48fdf14628e8e0da67d0c631b07644caa24184e5e45
SHA512

ee143a13dec483fa1c497adccc2bd672d01e8b1a46c4f48972b996a38bec373cb0bdebadfe9174837f08ceb0fa0b8101d0fd13e6e34da82bed6ef647be66287a
SSDEEP

192:UmyOHt+ROYKAFRT2Y0QUSIewqL2J1UFPjW4wW1:Umdt+RO1AF12Y0qL2cFPjW4wW1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
UserLanguageProfileCallback.dll

Files

UserLanguageProfileCallback.dll
.dll windows:6 windows x86 arch:x86

fa62560ddaa9d23709199b262584787c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

UserLanguageProfileCallback.pdb

Imports

msvcrt

_except_handler4_common
_initterm
malloc
free
_amsg_exit
_XcptFilter

bcp47langs

GetSerializedUserLanguageProfile

api-ms-win-core-com-l1-1-1

CoCreateInstance
CoInitializeEx
CoUninitialize

api-ms-win-core-winrt-string-l1-1-0

WindowsGetStringRawBuffer
WindowsStringHasEmbeddedNull
WindowsDeleteString

api-ms-win-core-synch-l1-2-0

OpenEventW
WaitForSingleObject
CreateEventW
Sleep

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-2

GetCurrentThreadId
TerminateProcess
GetCurrentProcess
GetCurrentProcessId

api-ms-win-core-sysinfo-l1-2-1

GetSystemTimeAsFileTime
GetTickCount

api-ms-win-core-errorhandling-l1-1-1

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetLastError

api-ms-win-core-handle-l1-1-0

CloseHandle

oleaut32

SysFreeString
SysAllocString

Exports

Exports

OnUserProfileChanged

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa62560ddaa9d23709199b262584787c

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

bcp47langs

api-ms-win-core-com-l1-1-1

api-ms-win-core-winrt-string-l1-1-0

api-ms-win-core-synch-l1-2-0

api-ms-win-core-profile-l1-1-0

api-ms-win-core-processthreads-l1-1-2

api-ms-win-core-sysinfo-l1-2-1

api-ms-win-core-errorhandling-l1-1-1

api-ms-win-core-handle-l1-1-0

oleaut32

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 848B

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 384B

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 848B

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 384B