DSE-Patcher[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

DSE-Patcher.exe
Size

1.8MB
MD5

cc131e9207cc5e4b463ec147b1d6ebb2
SHA1

16e68238af5764f151785e9f67fef071ab0438a6
SHA256

94397d51ee281291af8df0e36ce7181e1cfc1030cffe58ce51d0965b2a663f83
SHA512

47e216aeb6abb74b591d3b553c517699a20c9e520683134e879fcb8ca6b8fc98624f089e6396cf5fcbf6378b4b4357586aa58e228a4eec95f95d61c613e0366f
SSDEEP

49152:cj8FCsfZRZA6Xn388avVovfLd+Mo4iEe:9Z2ans8GVoLd+Gne

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DSE-Patcher.exe

Files

DSE-Patcher.exe
.exe windows:4 windows x64 arch:x64

b7ddeb2e9400ec3c7c525504e62c8951

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

DSE-Patcher.pdb

Imports

kernel32

CloseHandle
CreateFileA
CreateThread
DeleteFileA
DeviceIoControl
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameA
GetModuleHandleW
GetProcAddress
GetStartupInfoW
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetTickCount
LoadLibraryA
LoadLibraryExA
LocalAlloc
LocalFree
MulDiv
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
WriteFile
lstrcatA
lstrcpyA
lstrlenA

msvcrt

?terminate@@YAXXZ
_XcptFilter
__C_specific_handler
__getmainargs
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_commode
_exit
_fmode
_initterm
_ismbblead
_stricmp
calloc
exit
free
malloc
memset
sprintf
strrchr

user32

CreateWindowExA
DialogBoxParamA
EnableWindow
EndDialog
GetClientRect
GetDC
GetDlgItem
KillTimer
LoadIconA
MessageBoxA
ReleaseDC
SendMessageA
SetFocus
SetTimer

comctl32

ord6

gdi32

CreateFontIndirectA
GetDeviceCaps

advapi32

AdjustTokenPrivileges
AllocateAndInitializeSid
CloseServiceHandle
ControlService
CreateServiceA
DeleteService
FreeSid
GetNamedSecurityInfoA
InitializeSecurityDescriptor
LookupPrivilegeValueA
OpenProcessToken
OpenSCManagerA
OpenServiceA
QueryServiceStatusEx
RegCloseKey
RegOpenKeyExA
RegSetValueExA
SetEntriesInAclA
SetFileSecurityA
SetNamedSecurityInfoA
SetSecurityDescriptorDacl
StartServiceA

shlwapi

PathFileExistsA

setupapi

SetupDiCallClassInstaller
SetupDiCreateDeviceInfoA
SetupDiCreateDeviceInfoList
SetupDiDestroyDeviceInfoList
SetupDiGetINFClassA
SetupDiRemoveDevice
SetupDiSetDeviceRegistryPropertyA

newdev

UpdateDriverForPlugAndPlayDevicesA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7ddeb2e9400ec3c7c525504e62c8951

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

msvcrt

user32

comctl32

gdi32

advapi32

shlwapi

setupapi

newdev

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 1.8MB - Virtual size: 1.8MB

.pdata Size: 1024B - Virtual size: 576B

Size: 14KB - Virtual size: 13KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 16B

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 1.8MB - Virtual size: 1.8MB

.pdata
Size: 1024B - Virtual size: 576B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 16B