a2723515ad076e4fdd8dc6b0758b4b2305947d0df1c258d1fde110c53fd52ee2

Sharing

Copy URL Twitter E-mail

General

Target

a2723515ad076e4fdd8dc6b0758b4b2305947d0df1c258d1fde110c53fd52ee2
Size

221KB
MD5

626946bf1ef112bb65c0ed360c56a013
SHA1

137e8c7b28bfa300338edebeecd4e5758997064d
SHA256

a2723515ad076e4fdd8dc6b0758b4b2305947d0df1c258d1fde110c53fd52ee2
SHA512

140c1f96e97055961f6ad8455046edf926da1499157b0e17dc754f14711d72e9123fdfc571a3ee3bd1e4b58a33f64ecf06a8fd5fa03495ed2ccd8a53ceb8710a
SSDEEP

6144:CB3sD2EhigwMrgERd9jACsPMr8NRHxWx:CAwMSL3DHO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2723515ad076e4fdd8dc6b0758b4b2305947d0df1c258d1fde110c53fd52ee2

Files

a2723515ad076e4fdd8dc6b0758b4b2305947d0df1c258d1fde110c53fd52ee2
.dll windows:6 windows x86 arch:x86

5fcd189642886b68d0c14f1c25277893

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

hid

HidD_FreePreparsedData
HidD_GetPreparsedData
HidD_GetHidGuid
HidP_GetCaps
HidD_GetAttributes
HidD_GetSerialNumberString

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW

kernel32

GetCommandLineW
DecodePointer
InterlockedIncrement
InterlockedDecrement
RaiseException
GetLastError
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
lstrlenA
lstrlenW
MultiByteToWideChar
HeapFree
HeapAlloc
TerminateThread
WaitForSingleObject
CloseHandle
CreateEventW
DebugBreak
OutputDebugStringW
WriteFile
GetModuleFileNameW
CreateFileW
WideCharToMultiByte
CreateThread
GetOverlappedResult
ResumeThread
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetEvent
ResetEvent
WaitForMultipleObjects
ReadFile
PurgeComm
CancelIo
ClearCommError
SetupComm
GetCommState
SetCommState
SetCommTimeouts
CreateWaitableTimerW
SetWaitableTimer
CancelWaitableTimer
CreateSemaphoreW
GetModuleFileNameA
GetConsoleCP
GetProcessHeap
WriteConsoleW
SetFilePointerEx
FlushFileBuffers
SetStdHandle
GetCommandLineA
GetCPInfo
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindNextFileA
FreeEnvironmentStringsW
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetModuleHandleW
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
EncodePointer
RtlUnwind
InterlockedFlushSList
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetStringTypeW
GetACP
GetStdHandle
GetFileType
HeapReAlloc
LCMapStringW
GetConsoleMode
HeapSize
FindClose
FindFirstFileExA

user32

wsprintfW
LoadStringW
CharUpperW
PostMessageW
SendMessageW
CharNextW

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

Exports

Exports

ANMR113R_Close
ANMR113R_GetLibVersion
ANMR113R_Open
PLUG_GetLink

Sections

.text
Size: 154KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5fcd189642886b68d0c14f1c25277893

Headers

DLL Characteristics

File Characteristics

Imports

hid

setupapi

kernel32

user32

version

Exports

Exports

Sections

.text Size: 154KB - Virtual size: 153KB

.rdata Size: 46KB - Virtual size: 45KB

.data Size: 5KB - Virtual size: 8KB

.gfids Size: 512B - Virtual size: 256B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 154KB - Virtual size: 153KB

.rdata
Size: 46KB - Virtual size: 45KB

.data
Size: 5KB - Virtual size: 8KB

.gfids
Size: 512B - Virtual size: 256B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 12KB