a05f82b86fefe8a159c319e31814a89b7069b4ad1d9b9e091e22e6e8939079e1

Sharing

Copy URL

Twitter E-mail

General

Target

a05f82b86fefe8a159c319e31814a89b7069b4ad1d9b9e091e22e6e8939079e1
Size

202KB
MD5

184509a95bd63f5c796082e340e03835
SHA1

d1643fa7396a7c94b059e5ec8a6b95aa63bea752
SHA256

a05f82b86fefe8a159c319e31814a89b7069b4ad1d9b9e091e22e6e8939079e1
SHA512

54fc6f8d79bffcdefa397f0cd6d2d2890b864c5118a3792073041960d2ec42719b12e93edace3eef6ab7277f63f91c9aac902671858f665c3c106a78a905e069
SSDEEP

3072:UO0egSWxv8GBzAYa0QeXIdm5upsza4CtJL21uZuOJFef5eL1myxy0gxDFypC4:URegF8qQeXf5uph3Au4VJxl4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a05f82b86fefe8a159c319e31814a89b7069b4ad1d9b9e091e22e6e8939079e1

Files

a05f82b86fefe8a159c319e31814a89b7069b4ad1d9b9e091e22e6e8939079e1
.dll windows:6 windows x86 arch:x86

74b7890eb09015e58b705235b4a50006

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\B\LIBS2-LIBSEC-JOB7\src\Windows\dll\bin\Win32\Release\sec.pdb

Imports

kernel32

MultiByteToWideChar
HeapDestroy
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
GetProcessHeap
WideCharToMultiByte
GetLastError
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
WriteFile
ReadFile
CreateFileW
GetNamedPipeInfo
CloseHandle
FreeResource
InitializeCriticalSectionEx
RaiseException
DecodePointer
DeleteCriticalSection
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
SetStdHandle
SetFilePointerEx
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
IsDebuggerPresent
OutputDebugStringW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RtlUnwind
InterlockedFlushSList
SetLastError
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
GetStdHandle
GetFileType
GetStringTypeW
WriteConsoleW

ole32

CoCreateInstance

oleaut32

SysFreeString
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
VariantChangeType
SafeArrayRedim
SafeArrayCreate
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayCopy
SafeArrayGetVartype
VariantCopyInd
VariantClear
VariantCopy
VariantInit
SysAllocString

shlwapi

StrToIntW
StrCmpW

Exports

Exports

sec_AddConnectionService
sec_ApplyConnection
sec_ConnectService
sec_CreateConnection
sec_DeleteAllConnections
sec_DeleteConnection
sec_DisconnectRemoteHost
sec_DisconnectService
sec_GetConnectionsList
sec_GetLastError
sec_GetParam
sec_SetParam
sec_StartConnection
sec_StopConnection
sec_UpdateConnectionStatus

Sections

.text
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74b7890eb09015e58b705235b4a50006

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

ole32

oleaut32

shlwapi

Exports

Exports

Sections

.text Size: 134KB - Virtual size: 134KB

.rdata Size: 35KB - Virtual size: 35KB

.data Size: 2KB - Virtual size: 5KB

.rsrc Size: 21KB - Virtual size: 20KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 134KB - Virtual size: 134KB

.rdata
Size: 35KB - Virtual size: 35KB

.data
Size: 2KB - Virtual size: 5KB

.rsrc
Size: 21KB - Virtual size: 20KB

.reloc
Size: 7KB - Virtual size: 7KB