71ce8b6a4ecfc01f274b3a41380098a0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

71ce8b6a4ecfc01f274b3a41380098a0N.exe
Size

19KB
MD5

71ce8b6a4ecfc01f274b3a41380098a0
SHA1

aa8f95b18cad1471cf4956e6363375ed4bf16a4c
SHA256

cb6596a95a5ee80f31f50fd0d4fcee5be1d05a61fe1935b689056a48dd972713
SHA512

e78a869a77b23239bc91cee457ed2b689d5352cce8631f9eb3e093a924a07ca54397164b81da0f618377b8428c035036b91169f6742c009c392e4752bca26974
SSDEEP

384:uZauUFGPTV2dhbAkjXOhenzs6kOkFTLkk1n7AY7e4NcTK5n2s1Q1lf:uZnUF/fG4g6kxTIsn7ak1B28k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71ce8b6a4ecfc01f274b3a41380098a0N.exe

Files

71ce8b6a4ecfc01f274b3a41380098a0N.exe
.dll windows:6 windows x86 arch:x86

8111af43cbea8f5f46e0ad641753c93a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

sdl2

SDL_FreeSurface
SDL_SetColorKey
SDL_CreateRGBSurface
SDL_GetError

sdl2_ttf

TTF_RenderUTF8_Solid
TTF_FontDescent
TTF_SetFontScriptName
TTF_Linked_Version
TTF_RenderUTF8_Shaded
TTF_FontLineSkip
TTF_SetFontStyle
TTF_Quit
TTF_OpenFontRW
TTF_FontHeight
TTF_Init
TTF_SizeText
TTF_SizeUTF8
TTF_CloseFont
TTF_GetFontStyle
TTF_FontAscent
TTF_GlyphMetrics
TTF_RenderUTF8_Blended

python38

PyObject_CallMethod
PyArg_ParseTupleAndKeywords
PyUnicode_FromEncodedObject
PyExc_TypeError
PyCapsule_Type
PyObject_IsTrue
PyUnicode_FromString
PyUnicode_CompareWithASCIIString
PyArg_ParseTuple
PyEval_RestoreThread
PyUnicode_AsUTF16String
PyCapsule_New
PyList_Append
PyErr_Clear
PyObject_GetAttrString
PyType_Ready
PyList_New
PyObject_ClearWeakRefs
PyModule_AddObject
PyCapsule_GetPointer
PyErr_ExceptionMatches
_Py_Dealloc
PyErr_Format
PyExc_ValueError
PyObject_CallFunction
PyErr_SetString
PyExc_AttributeError
_Py_NoneStruct
PyBytes_AsStringAndSize
PyExc_MemoryError
Py_BuildValue
PyLong_FromLong
PyExc_RuntimeError
PyEval_SaveThread
PyUnicode_AsUTF8AndSize
PyErr_Occurred
PyImport_ImportModule
PyType_GenericNew
PyModule_AddIntConstant
PyBool_FromLong
PyUnicode_AsEncodedString
PyModule_Create2

kernel32

UnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls

vcruntime140

_except_handler4_common
__std_type_info_destroy_list
memset

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_cexit
_execute_onexit_table

Exports

Exports

PyInit_font

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8111af43cbea8f5f46e0ad641753c93a

Headers

DLL Characteristics

File Characteristics

Imports

sdl2

sdl2_ttf

python38

kernel32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 1024B - Virtual size: 1KB

.gfids Size: 512B - Virtual size: 20B

.rsrc Size: 512B - Virtual size: 248B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 1024B - Virtual size: 1KB

.gfids
Size: 512B - Virtual size: 20B

.rsrc
Size: 512B - Virtual size: 248B

.reloc
Size: 1KB - Virtual size: 1KB