PyInit__imaging
Static task
static1
1 signatures
General
-
Target
_imaging.cp312-win32.pyd
-
Size
1.9MB
-
MD5
f5b2b22ae751321d84c7a8331b0d3cab
-
SHA1
9210908377922699cc04b542343974d5bff31c00
-
SHA256
e90a50a6c4e03331eb7ab53e7c61a2b4e2d925ccde0bd8a15933860ab22bd398
-
SHA512
bf825f279501654001afcd767bb65de0c9874825a8943ddca3cd7d80abd71271bfda4232c4c6b12e7410eea231f045625042e8be1bd89b1ab2d59108798a2ad9
-
SSDEEP
49152:kVo++Nk1hqhO8feMZ5orT3nDOoLFqu+3:qo+5qk9Fc
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource _imaging.cp312-win32.pyd
Files
-
_imaging.cp312-win32.pyd.dll windows:6 windows x86 arch:x86
b4cb3b28dbc0725e9eb01e41609eb188
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
SetEvent
WaitForSingleObject
CreateEventA
TlsAlloc
TlsGetValue
TlsSetValue
GetSystemInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
InitializeCriticalSectionEx
InitializeConditionVariable
WakeConditionVariable
SleepConditionVariableCS
WaitForSingleObjectEx
SetThreadPriority
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
CreateFileMappingA
UnmapViewOfFile
MapViewOfFile
GetLastError
CloseHandle
WriteFile
SetFilePointer
ReadFile
GetFileSizeEx
GlobalUnlock
FreeLibrary
GlobalLock
GetProcAddress
LoadLibraryA
GetModuleHandleA
GlobalSize
Sleep
GetCurrentProcessId
user32
GetMessageA
DispatchMessageA
GetWindowRect
LoadCursorA
GetDC
FillRect
EndPaint
BeginPaint
GetSystemMetrics
ShowWindow
OpenClipboard
SetWindowLongA
CloseClipboard
GetWindowLongA
EnumClipboardFormats
RegisterClassA
DefWindowProcA
CreateWindowExA
TranslateMessage
GetClipboardData
LoadIconA
SetForegroundWindow
InvalidateRect
RegisterClipboardFormatA
ReleaseDC
gdi32
SelectObject
BitBlt
CreateCompatibleBitmap
SetWinMetaFileBits
CreateDIBSection
CreateCompatibleDC
GdiFlush
PlayEnhMetaFile
SetEnhMetaFileBits
GetStockObject
GetDIBits
DeleteEnhMetaFile
GetDeviceCaps
DeleteDC
DeleteObject
CreateDCA
SelectPalette
GetSystemPaletteEntries
StretchDIBits
RealizePalette
StretchBlt
SetDIBColorTable
CreatePalette
python312
PyExc_IndexError
PyObject_Print
PyList_SetItem
PyUnicode_FromString
PyObject_Size
PyExc_TypeError
PyEval_RestoreThread
_PyObject_New
PyBytes_FromStringAndSize
PyExc_OSError
PyExc_RuntimeError
PyErr_NoMemory
PyUnicode_Type
PySequence_Check
PyThreadState_Get
_PyObject_CallFunction_SizeT
PySys_GetObject
PyFile_WriteString
PyErr_Print
PySequence_Size
PyDict_New
PyCapsule_New
PyErr_Clear
_PyObject_CallMethod_SizeT
PyType_Ready
PyModule_Create2
PyList_New
PySequence_Fast
PyNumber_AsSsize_t
PyObject_GetBuffer
PyNumber_Check
PyIndex_Check
PyErr_ExceptionMatches
PyObject_CallFunction
PyLong_AsLong
_PyArg_ParseTuple_SizeT
PyObject_CheckBuffer
Py_BuildValue
PyModule_AddObject
PySlice_Unpack
PySequence_GetItem
PyObject_Free
PySlice_Type
PySlice_AdjustIndices
PyArg_ParseTuple
PyExc_MemoryError
PyObject_CallMethod
PyLong_AsSsize_t
PyExc_SystemError
PyObject_IsTrue
PyDict_GetItem
PyList_GetItem
PyBytes_Size
PyTuple_Size
_PyBytes_Resize
PyModule_GetDict
PyTuple_GetItem
PyErr_SetFromErrno
PyErr_Format
PyList_Size
_Py_TrueStruct
PyThreadState_Swap
_Py_Dealloc
PyType_IsSubtype
PyFloat_Type
_Py_FalseStruct
PyExc_ValueError
PyErr_SetString
PyFloat_FromDouble
PyDict_SetItemString
PyTuple_New
PyLong_AsLongLong
_Py_NoneStruct
PyBytes_AsStringAndSize
PyFloat_AsDouble
PyUnicode_AsLatin1String
PyLong_FromLong
PyEval_SaveThread
PyLong_FromSsize_t
PyErr_Occurred
PyBytes_AsString
_PyErr_BadInternalCall
PyModule_AddIntConstant
_Py_BuildValue_SizeT
PyBool_FromLong
PyBuffer_Release
vcruntime140
longjmp
memmove
memset
_setjmp3
__std_type_info_destroy_list
memcpy
_except_handler4_common
api-ms-win-crt-heap-l1-1-0
_aligned_free
calloc
free
malloc
realloc
_aligned_malloc
api-ms-win-crt-stdio-l1-1-0
_lseek
__acrt_iob_func
_write
__stdio_common_vfprintf
__stdio_common_vsscanf
__stdio_common_vsnprintf_s
__stdio_common_vsprintf
_get_osfhandle
fwrite
fclose
fopen
api-ms-win-crt-string-l1-1-0
strncpy
_strdup
strncmp
api-ms-win-crt-runtime-l1-1-0
exit
_beginthreadex
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
api-ms-win-crt-math-l1-1-0
hypot
fmax
roundf
round
_libm_sse2_pow_precise
fmin
_libm_sse2_exp_precise
_libm_sse2_log_precise
_CIatan2
_libm_sse2_sin_precise
_libm_sse2_log10_precise
floor
_libm_sse2_sqrt_precise
lround
_CIfmod
_libm_sse2_cos_precise
ceil
api-ms-win-crt-utility-l1-1-0
bsearch
rand
qsort
api-ms-win-crt-convert-l1-1-0
atoi
api-ms-win-crt-environment-l1-1-0
getenv_s
getenv
Exports
Exports
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 387KB - Virtual size: 386KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 13KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 248B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 38KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ