bccd418cd6213133d8ae465aea97ad93c7cc6a22f61deceefd8796593d57fd34

Sharing

Copy URL Twitter E-mail

General

Target

bccd418cd6213133d8ae465aea97ad93c7cc6a22f61deceefd8796593d57fd34
Size

38KB
MD5

9a2ebaa4f0bf7bf0ae5c96b2d3129e61
SHA1

a3c0bde41b44beda81b0069997eb5cd90c441fbc
SHA256

bccd418cd6213133d8ae465aea97ad93c7cc6a22f61deceefd8796593d57fd34
SHA512

eb528231c51d9fd7957c92f31ed95f243e9728dec577331ac66dda6ef81044ab2bc2b5a94fec3363ea06087b622fd109b21a7f1b6a77ae1be2db179ae8da0930
SSDEEP

768:kTzVVV0EczSgqMx3fE9N2NPfTklqpGIZOD:kPVVikNMx3fE9N2NPfolqpGIZOD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bccd418cd6213133d8ae465aea97ad93c7cc6a22f61deceefd8796593d57fd34

Files

bccd418cd6213133d8ae465aea97ad93c7cc6a22f61deceefd8796593d57fd34
.dll windows:6 windows x86 arch:x86

f813e7585703348eac94417b8341b86a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\win32\select_d.pdb

Imports

ws2_32

select
WSAGetLastError
__WSAFDIsSet

python312_d

PyModule_AddObjectRef
_PyArg_CheckPositional
PyEval_SaveThread
PyEval_RestoreThread
PySequence_Fast
PyLong_Type
PyBool_Type
_Py_NoneStruct
PyExc_OSError
PyExc_TypeError
PyExc_ValueError
PyErr_SetExcFromWindowsErr
PyErr_ExceptionMatches
PyErr_Occurred
PyErr_SetString
_PyDeadline_Get
_PyDeadline_Init
_PyTime_AsTimeval_clamp
PyErr_CheckSignals
_Py_IncRefTotal_DO_NOT_USE_THIS
_Py_DecRefTotal_DO_NOT_USE_THIS
_Py_NegativeRefcount
_Py_Dealloc
_PyTime_FromSecondsObject
PyUnicode_InternFromString
PyTuple_Pack
PyList_New
PyList_SetItem
PyModule_GetState
PyModuleDef_Init
PyObject_AsFileDescriptor
_PyTime_AsTimeval

vcruntime140d

__current_exception
__current_exception_context
_except_handler4_common
memset
__std_type_info_destroy_list

ucrtbased

_initialize_onexit_table
terminate
_cexit
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_configure_narrow_argv
_initialize_narrow_environment
_seh_filter_dll
_initterm_e
_initterm
_wassert
_errno

kernel32

QueryPerformanceCounter
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
IsProcessorFeaturePresent
GetCurrentProcess

Exports

Exports

PyInit_select

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 270B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f813e7585703348eac94417b8341b86a

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

python312_d

vcruntime140d

ucrtbased

kernel32

Exports

Exports

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 1KB

.idata Size: 3KB - Virtual size: 3KB

.00cfg Size: 512B - Virtual size: 270B

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 1KB

.idata
Size: 3KB - Virtual size: 3KB

.00cfg
Size: 512B - Virtual size: 270B

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB