internsystem[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

internsystem.dll
Size

300KB
MD5

d2938c7e664b2f0ac2b6f174a0ff6db2
SHA1

547dcec994b95aa0336c9254eccdeb3bd54500bb
SHA256

090fd44b77d10eb1125f3e008860f1d4d414a880703dfd08dfaf7c884e57ce2b
SHA512

006455598126f827aa55411b54c4974e14295843e49114e945f35b568d29c1070ed3695d806f30268472d802adcc5ac20323d933883978854fbadf19ccc6a35d
SSDEEP

6144:BiXns3vVKZ96I58pIvEeILm6p/NxpnvFfyQFrEOY:BiXs296IyuvEfdR9FfyQxY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
internsystem.dll

Files

internsystem.dll
.dll windows:5 windows x64 arch:x64

790e4b852377c875c5085cbe6ff83b56

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_SYSTEM
IMAGE_FILE_DLL

Imports

�k��b��j��

�|��k��k��~��
�k��`��^��k��
�|��k��m��O�
�k��|��z��k��|��
�k��b��z��c��
�k��i��b��x��
�g��b��w��c��k��t��m��m��o��c��+�g��g��a��z��g��
�w��c��k��t��m��m��o��c��+�g��g��a��z��g��
�g��g��a��z��g��
�v��j��g��c��]��`��k��b��z��{��O�
�k��b��z��{��O�
�g��g��H��O�
�g��k��g��p
�a��g��`�a��g��k��|��z��m��G�ô
�a��g��k��|��z��m��G�ô
�k��|��z��m��G�ô
�|��k��k��
�|��k��b��~��`��f��
�f��j��g��f��j��k��
�f��j��k��
�a��I��f��j��z��'�a��]��f��j��z��g��o��b��
�a��]��f��j��z��g��o��b��
�g��o��b��
�g��o��a��z�
�k��}��|��
�k��c��g��o��k��z�Ï�k��o��^��
�k��o��^��
�|��k��k��o��o��^��O�
�o��o��^��O�
�k��j��H��@��O�
�k��c��k��c��
�k��|��`��n�k��^�
�k��^�
�k��C��
�k��a��}��~�
�`��o��k��m��k��z��l��B��
�k��k��m��k��z��l��B��f�k��|��a��
�k��|��a��
�~��k��m��k��z��l��|��}��Z��}��`��
�|��}��Z��}��`��
�|��}��H��z�
�|��}��@��k��c��k��c��O�
�k��c��k��c��O�
�g��o��k��
�g��o��k��
�g��o��b��v�
�g��o��a��z��
�~��|��}�é
�|��k��a��f��j�
�a��m��c��g��
�k��|��}��c��=�|��^��k��k��w�
�|��^��k��k��w�
�k��|��M��k��
�k��|��M��k��
�k��k��k��
�b��F��b��
�{��m��F��b��Y�o��k��H��`��X��A��b�É
�o��k��H��`��X��A��b�É
�`��X��A��b�É
�|��k��k��~��O�
�v��|��}�� v��f��j�
�v��f��j�
�k��g��
�k��|��z��k��
�k��|��z��m��k��|��z��k��
�{��L��Z��j��o��k��|��z��m��k��|��z��k��
�k��|��z��k��|��
�k��|��z��k��|��
�k��o��~��a��Z�k��|��z��k��|��
�g��`��z��k��~��i�k��o��~��a��Z�k��|��z��k��|��
�|��k��k�
�k��m��{��
�k��m��g��
�b��H��L��k��
�|��H��]�b��H��L��k��
�o��a��`��A��m��4�|��H��]�b��H��L��k��
�b��o��a��`��A��m��4�|��H��]�b��H��L��k��
�k��j��F��b��
�a��g��|��
�k��}��|��
�k��|��
�o��K��~��`�
�k��x��`��z��g��k�ô�o��K��~��`�
�k��x��`��z��g��k��e�k��x��`��z��g��k�ô�o��K��~��`�
�k��b��k��|��
�k��k��a��k��b��k��|��
�k��|��k�
�k��j��g��
�|��k��k��a�k��j��g��
�|��M��a��
�k��j��j��
�k��|��Z��Y�
�M��]��`��
�a��|��|��Y�
�k��g��
�a��g��|��
�{��z��{��|��Y�
�|��`��a��`��|��}�Ì�{��z��{��|��Y�
�k��x��`��z��g��Y�
�{��^��a��`��a��k��k��x��`��z��g��Y�
�k��k��k��|��
�|��k��k��|��
�k��k��k�Á
�k��b��~��
�k��b��g��|��
�k��b��g��|�
�k��a��b��
�k��`��k��k�
�k��`��k��
�g��f��a��z��z�à�k��`��k��
�k��G�� g��f��a��z��z�à�k��`��k��
�}��g��j��i��x�k��G�� g��f��a��z��z�à�k��`��k��
�z��y��K��}��g��j��i��x�k��G�� g��f��a��z��z�à�k��`��k��
�k��a��j��}�
�~��f��j�
�|��g��|��L�k��a��j��}�
�`��k��`��
�k��k��`��k��j��F��b��Y�
�k��j��F��b��Y�
�|��b��g��]�À�k��}��Z��O��b��c��k��k��a�Ì�k��c��j��k��k��|��z��k��j�
�k��}��Z��O��b��c��k��k��a�Ì�k��c��j��k��k��|��z��k��j�
�k��k��a�Ì�k��c��j��k��k��|��z��k��j�
�k��c��j��k��k��|��z��k��j�
�k��|��z��k��j�
�k��j��j��
�k��j��H��@��Y�
�}��{��|��}��}��m��a��o��k��}��
�}��m��a��o��k��}��
�`��M��g��]��g��
�k��M��g��]��g��
�`��o��k��z��b��z��O��~��a��
�k��k��z��b��z��z��~��k��z��z��a��H��z��K��w�
�z��~��k��z��z��a��H��z��K��w�
�z��a��H��z��K��w�
�z��|��b��g��
�`��j��K��~��`��z��
�k��f��b��v��z��H��k��b��b��
�b��b��
�b��z��{��b��z��{��b��k��j�k��o��~��a��k��j��F��b��
�b��z��{��b��k��j�k��o��~��a��k��j��F��b��
�b��k��j�k��o��~��a��k��j��F��b��
�k��o��~��a��k��j��F��b��
�k��j��F��b��
�a��g��|��Y�

�j��g��j��

�k��e��`��c��a��
�~��|��}��e��
�|��\��o��a��v�ð
�|��O��g��a��v��
�|��I��o��c�
�f��Z��`��l��f��
�{��m��Z��`��
�a��[��O�
�a��~��a��]��a��[��O�
�|��g�Ð�a��~��a��]��a��[��O�
�b��o��`��g��b��]��
�c��}��z��c��g��b��z�
�k��z��k��
�k��k��c��
�|��k��m��Y��Z��`��d�k��k��c��
�|��k��m��Y��B��`��~
�|��k��m��O��k��
�c��}��z��i��A��k��{
�a��~��x��i��b��s�c��}��z��i��A��k��{
�j��z��k��g��k��a��~��x��i��b��s�c��}��z��i��A��k��{
�~��f��j��k��

�g��k��b��6

�`��`��k��g��
�`��`��b��F��b��q
�`��`��a��m��
�`��`��{��J��O��b��k�
�`��`��{��A��a��
�`��`��k��z��O�
�`��`��k��o��M��l��W
�z��~��k��}��
�z��j��z��j��O�
�z��k��k��}��
�z��{��G��O�
�`��`��~��k

�]휪<��b�

ord15
ord52
ord23
ord19
ord4
ord10
�]��m��
ord116
ord115
ord3
ord14
ord9
ord8
ord16
ord22
ord111
ord151
ord1
ord2
ord11
ord13
ord17
ord18
ord20
�]��m��O�

Exports

Exports

InternSystem

Sections

�z��
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

�|��o�
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�j��
Size: 29KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�~��o�
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�|��m�
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

790e4b852377c875c5085cbe6ff83b56

Headers

DLL Characteristics

File Characteristics

Imports

�k���b���j���

�j���g���j���

�g���k���b��6

�]휪<���b�

Exports

Exports

Sections

�z��� Size: 192KB - Virtual size: 192KB

�|���o� Size: 63KB - Virtual size: 63KB

�j��� Size: 29KB - Virtual size: 70KB

�~���o� Size: 9KB - Virtual size: 9KB

�|���m� Size: 4KB - Virtual size: 3KB

�k��b��j��

�j��g��j��

�g��k��b��6

�]휪<��b�

�z��
Size: 192KB - Virtual size: 192KB

�|��o�
Size: 63KB - Virtual size: 63KB

�j��
Size: 29KB - Virtual size: 70KB

�~��o�
Size: 9KB - Virtual size: 9KB

�|��m�
Size: 4KB - Virtual size: 3KB