d42d47ce580849f4a2a81ecc6f19ae95da96d6b6d4d0ba3dc0663ddc178d7adf

Sharing

Copy URL Twitter E-mail

General

Target

d42d47ce580849f4a2a81ecc6f19ae95da96d6b6d4d0ba3dc0663ddc178d7adf
Size

37KB
MD5

7c87ffbd520b3c3a1045c66a2c6f3c88
SHA1

38a7af53772a106346fffe38a217929d007cab18
SHA256

d42d47ce580849f4a2a81ecc6f19ae95da96d6b6d4d0ba3dc0663ddc178d7adf
SHA512

a9c715693f9e922417d4552cb343efd23e09f236aeb3cd1aa84f59a859ca8ec3fcad0e3c1fe457aaa6b9ab5bcc74bcac89384b5d088945e0b4f63023c966db67
SSDEEP

768:7kwVF5WmXXcc2GkughgzaK/Hf6o14nnptZwykS6R6B:fBghea0Hf4nptZwPhY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d42d47ce580849f4a2a81ecc6f19ae95da96d6b6d4d0ba3dc0663ddc178d7adf

Files

d42d47ce580849f4a2a81ecc6f19ae95da96d6b6d4d0ba3dc0663ddc178d7adf
.dll windows:6 windows x64 arch:x64

f6ad4974040c15a050117c62e1838d34

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

sdl2

SDL_PushEvent
SDL_WasInit
SDL_InitSubSystem
SDL_strlen
SDL_QuitSubSystem
SDL_setenv
SDL_GetError
SDL_strncasecmp
SDL_getenv

sdl2_mixer

Mix_Playing
Mix_PlayChannelTimed
Mix_GroupCount
Mix_HaltGroup
Mix_HaltChannel
Mix_FreeChunk
Mix_Resume
Mix_GroupOldest
Mix_HaltMusic
Mix_LoadWAV_RW
Mix_GroupAvailable
Mix_FreeMusic
Mix_VolumeMusic
Mix_QuickLoad_RAW
Mix_FadeOutGroup
Mix_CloseAudio
Mix_AllocateChannels
Mix_Pause
Mix_SetPanning
Mix_QuerySpec
Mix_VolumeChunk
Mix_ReserveChannels
Mix_FadeOutChannel
Mix_Volume
Mix_Linked_Version
Mix_OpenAudioDevice
Mix_FadeInChannelTimed
Mix_GroupChannel
Mix_ChannelFinished

python37

PyExc_SystemError
PyDict_Keys
PyBuffer_Release
PyEval_RestoreThread
_PyArg_ParseTuple_SizeT
PyModule_AddObject
PyCapsule_GetPointer
PyObject_Free
PyErr_Format
_PyArg_ParseTupleAndKeywords_SizeT
PyExc_ValueError
PyErr_SetString
PyExc_IndexError
PyDict_Size
PyDict_SetItemString
_Py_NoneStruct
PyGILState_Release
PyLong_FromUnsignedLongLong
PyLong_FromLong
PyExc_RuntimeError
PyEval_SaveThread
PyErr_Occurred
PyImport_ImportModule
PyType_GenericNew
_Py_BuildValue_SizeT
PyBool_FromLong
PyMem_Malloc
PyCapsule_Type
PyExc_TypeError
_PyObject_New
PyGILState_Ensure
PyBytes_FromStringAndSize
PyDict_GetItemString
PyErr_NoMemory
PyMem_Free
PyDict_New
PyCapsule_New
PyErr_Clear
PyObject_GetAttrString
PyType_Ready
PyModule_Create2
PyFloat_FromDouble
PyObject_GetBuffer
PyObject_ClearWeakRefs

kernel32

RtlCaptureContext
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent

vcruntime140

memset
__std_type_info_destroy_list
__C_specific_handler
memcpy

api-ms-win-crt-heap-l1-1-0

free
malloc
realloc

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_cexit
_initialize_narrow_environment

Exports

Exports

PyInit_mixer

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6ad4974040c15a050117c62e1838d34

Headers

DLL Characteristics

File Characteristics

Imports

sdl2

sdl2_mixer

python37

kernel32

vcruntime140

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 3KB - Virtual size: 4KB

.pdata Size: 2KB - Virtual size: 1KB

.gfids Size: 512B - Virtual size: 16B

.rsrc Size: 512B - Virtual size: 248B

.reloc Size: 512B - Virtual size: 340B

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 3KB - Virtual size: 4KB

.pdata
Size: 2KB - Virtual size: 1KB

.gfids
Size: 512B - Virtual size: 16B

.rsrc
Size: 512B - Virtual size: 248B

.reloc
Size: 512B - Virtual size: 340B