019d9388dff45ffa2b7cf00296f70cb0fac66773f2f45524c060dc92411f861e[.]cab

Sharing

Copy URL Twitter E-mail

General

Target

019d9388dff45ffa2b7cf00296f70cb0fac66773f2f45524c060dc92411f861e.cab
Size

84KB
MD5

37ba46893fa07e2063330412bdf75950
SHA1

da0c961a43076db86472d0a51deebcd3f7db1121
SHA256

019d9388dff45ffa2b7cf00296f70cb0fac66773f2f45524c060dc92411f861e
SHA512

53bc9ee6677b22e8d8aef63a5db1b17ed99b471060ff4b708a683c812c3ffb4bc67b2b1b38bbf2539de87c47b05fcea44c498eea0744c9b83a377eccb2404a95
SSDEEP

1536:nxW81k7JNPwNjkzKIsBWGvDuVuZrqfOseedpu0mbZ4gDxgiX2tzFu1Fael8:wuCX4NjkzaLurfgkpdMuiIFu1E+8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/dxupdate.dll

Files

019d9388dff45ffa2b7cf00296f70cb0fac66773f2f45524c060dc92411f861e.cab
.cab
dxupdate.cif
dxupdate.dll
.dll windows:5 windows x86 arch:x86

7cc92c7144686006c059485ad2cc663c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

dxupdate.pdb

Imports

kernel32

CreateFileA
FindResourceExA
LoadLibraryA
CreateMutexA
DisableThreadLibraryCalls
lstrlenA
GetPrivateProfileStringA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
DeleteFileA
GetFileAttributesA
FindClose
FindFirstFileA
GetPrivateProfileSectionA
GetPrivateProfileSectionNamesA
SetFileAttributesA
CreateDirectoryA
CopyFileA
GetModuleHandleA
GetDiskFreeSpaceA
GetSystemDirectoryA
LoadLibraryExA
FindNextFileA
lstrcmpA
Sleep
GetTempFileNameA
WideCharToMultiByte
GetVersionExA
GetPrivateProfileIntA
GetModuleFileNameA
MultiByteToWideChar
MoveFileExA
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetCurrentDirectoryA
ResetEvent
SetEvent
CreateEventA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetLocalTime
CloseHandle
ExitProcess
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
SetFilePointer
SetStdHandle
FlushFileBuffers
RtlUnwind
InterlockedExchange
VirtualQuery
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
LCMapStringA
LCMapStringW
ReadFile
SetEndOfFile
VirtualProtect
GetSystemInfo
GetProcAddress
FreeLibrary
CompareStringA
FormatMessageA
LocalFree
GetLastError
GetWindowsDirectoryA
HeapReAlloc
OutputDebugStringA

user32

SetWindowPos
EndDialog
GetDlgItem
DialogBoxParamA
CharLowerA
CharNextA
SetDlgItemTextA
SendMessageA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shell32

SHFileOperationA

ole32

CoInitialize
StringFromGUID2
CoCreateInstance
CoUninitialize

comctl32

ord17

Exports

Exports

DirectXUpdateApplyUpdate
DirectXUpdateDownload
DirectXUpdateDownloadPlugIn
DirectXUpdateDownloadUpdate
DirectXUpdateGetSetupInformation
DirectXUpdateInstall
DirectXUpdateInstallPlugIn
DirectXUpdateSetCallback

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
dxupdate.inf

Sharing

General

Malware Config

Signatures

Files

7cc92c7144686006c059485ad2cc663c

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

version

shell32

ole32

comctl32

Exports

Exports

Sections

.text Size: 132KB - Virtual size: 132KB

.data Size: 3KB - Virtual size: 14KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 132KB - Virtual size: 132KB

.data
Size: 3KB - Virtual size: 14KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 9KB - Virtual size: 9KB