SciLexer[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

SciLexer.dll
Size

399KB
MD5

327a9981174a8b5fecb8423ce8856317
SHA1

8bb151b808e197510f0c4f773a427fc21e472b96
SHA256

f6bfef5c8d9416e40f41c59f6d748c826854763b199d9b852acd470142d4184a
SHA512

4c6f380a074883b04dffe4d41a1323e31ee215f47f6d4351efeeef2732c927b74061fb0a13f89b7990dfcecfb37404d9c98cfc551d7215785c1e8a0d915573ae
SSDEEP

6144:z1yJg5Yx7Y8NBCYB1FZJwvEhsKrV6gbX82PFeUoeU5qGuF5KZB3wxpt41T:zgJwYxM83CYPJwiTTXaAUUXqBCw1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SciLexer.dll

Files

SciLexer.dll
.dll windows:5 windows x86 arch:x86

a891a73ae9a9ca90db7cdd06c508b1dd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

I:\u\zs\scintilla\bin\SciLexer.pdb

Imports

kernel32

GetStringTypeW
GetStringTypeA
RtlUnwind
HeapReAlloc
VirtualAlloc
GetCurrentProcessId
VirtualFree
HeapDestroy
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
ExitProcess
HeapSize
Sleep
LCMapStringW
LCMapStringA
GetStdHandle
WriteFile
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
GetOEMCP
InterlockedDecrement
InterlockedIncrement
RaiseException
HeapAlloc
HeapFree
GetLastError
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
GetCommandLineA
GetCurrentThreadId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetFilePointer
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
CloseHandle
FreeLibrary
FlushFileBuffers
GlobalFree
IsValidCodePage
GlobalUnlock
WideCharToMultiByte
GlobalAlloc
GetTickCount
GlobalLock
GlobalSize
GetCPInfo
GetLocaleInfoA
GetVersionExA
DeleteCriticalSection
GetModuleHandleA
LoadLibraryA
EnterCriticalSection
GetProcAddress
IsDBCSLeadByteEx
MultiByteToWideChar
GetACP
MulDiv
LeaveCriticalSection
InitializeCriticalSection
QueryPerformanceCounter
GetModuleFileNameA

user32

ClientToScreen
CloseClipboard
GetUpdateRgn
SetTimer
HideCaret
LoadCursorA
DestroyMenu
CallWindowProcA
MapWindowPoints
GetSystemMetrics
ScreenToClient
IsChild
KillTimer
MsgWaitForMultipleObjects
IsClipboardFormatAvailable
SetFocus
ShowCaret
RegisterClassExW
GetKeyboardLayout
RegisterClipboardFormatA
GetScrollInfo
GetClipboardData
EmptyClipboard
IsWindowUnicode
ScrollWindow
DestroyCaret
AppendMenuA
CreateCaret
PostMessageA
OpenClipboard
SystemParametersInfoA
SetCaretPos
UpdateWindow
SetClipboardData
GetDlgCtrlID
SetScrollInfo
GetMessageTime
EndPaint
DestroyWindow
SetCursor
GetWindowRect
RegisterClassExA
TrackPopupMenu
FillRect
SetCapture
DrawTextW
DrawTextA
GetKeyState
GetParent
GetClientRect
SendMessageA
BeginPaint
GetDoubleClickTime
GetDC
DrawFocusRect
InflateRect
SetWindowLongA
InvalidateRect
UnregisterClassA
GetWindowLongA
CreateWindowExA
ReleaseDC
DefWindowProcA
GetSysColor
SetWindowPos
GetCursorPos
ShowWindow
CreatePopupMenu
FrameRect
AdjustWindowRectEx
ReleaseCapture

gdi32

GetNearestColor
TranslateCharsetInfo
CreateBitmap
CombineRgn
CreateRectRgn
MoveToEx
BitBlt
GetTextExtentPoint32W
GetTextExtentPoint32A
LineTo
SetTextColor
DeleteDC
Polygon
CreateDIBSection
GetDeviceCaps
CreateFontIndirectA
SetBkColor
CreatePalette
SetBkMode
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
Rectangle
ExtTextOutW
Ellipse
RealizePalette
SelectPalette
GetTextExtentExPointW
GetTextExtentExPointA
CreatePatternBrush
CreatePen
GetTextMetricsA
RoundRect
SetTextAlign
IntersectClipRect
GetObjectA
GetStockObject
ExtTextOutA
CreateSolidBrush

imm32

ImmGetContext
ImmReleaseContext
ImmGetCompositionStringW
ImmSetCompositionWindow
ImmNotifyIME
ImmSetCompositionFontA

ole32

DoDragDrop
OleUninitialize
OleInitialize
RevokeDragDrop
RegisterDragDrop

Exports

Exports

Scintilla_DirectFunction

Sections

.text
Size: 343KB - Virtual size: 342KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a891a73ae9a9ca90db7cdd06c508b1dd

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

imm32

ole32

Exports

Exports

Sections

.text Size: 343KB - Virtual size: 342KB

.rdata Size: 28KB - Virtual size: 28KB

.data Size: 10KB - Virtual size: 17KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 15KB - Virtual size: 14KB

.text
Size: 343KB - Virtual size: 342KB

.rdata
Size: 28KB - Virtual size: 28KB

.data
Size: 10KB - Virtual size: 17KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 15KB - Virtual size: 14KB