aa12556a4af0a651ea688dd5d36ae239eb0c4cec44adb50e6e6dc7ce3d9d2365

Sharing

Copy URL

Twitter E-mail

General

Target

aa12556a4af0a651ea688dd5d36ae239eb0c4cec44adb50e6e6dc7ce3d9d2365
Size

654KB
MD5

12df18f0db890a7c6d14a376af82bc82
SHA1

b11af341483ab1b06be10fcbde8c0caf5c022749
SHA256

aa12556a4af0a651ea688dd5d36ae239eb0c4cec44adb50e6e6dc7ce3d9d2365
SHA512

7f32e4f09c4ce5782c543a8138fbeb95cf6d2ddee68a457e6030d65c92567576da4e821555b15aab308e369f5d4bbac8b5269507a45a36e8a29d74023fa563c1
SSDEEP

12288:yLtPKalEsddSvw58Wsb+iTEm6QD9K4MWj8Tzo7hIyQLNtJhK2+:Wi8lfTGPwHQDQ4MUsChIXLHHT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa12556a4af0a651ea688dd5d36ae239eb0c4cec44adb50e6e6dc7ce3d9d2365

Files

aa12556a4af0a651ea688dd5d36ae239eb0c4cec44adb50e6e6dc7ce3d9d2365
.dll windows:5 windows x86 arch:x86

98b7969d26eb904139c04dd708766d68

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

UnhandledExceptionFilter
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

UnhookWindowsHookEx

Exports

Exports

?InjectDll@@YAHPAUHWND__@@@Z
?UnmapDll@@YAHPAUHWND__@@@Z

Sections

lvdyhsqp
Size: - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

bbsnynfe
Size: - Virtual size: 298KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rqqklial
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

bkhwqxyo
Size: - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lyvfyxor
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ysihgefv
Size: - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

owflkyya
Size: - Virtual size: 344KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vxxynjvl
Size: 651KB - Virtual size: 651KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

plqhnasl
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98b7969d26eb904139c04dd708766d68

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

lvdyhsqp Size: - Virtual size: 144KB

bbsnynfe Size: - Virtual size: 298KB

rqqklial Size: - Virtual size: 24KB

bkhwqxyo Size: - Virtual size: 3.9MB

lyvfyxor Size: 1KB - Virtual size: 1KB

ysihgefv Size: - Virtual size: 25KB

owflkyya Size: - Virtual size: 344KB

vxxynjvl Size: 651KB - Virtual size: 651KB

plqhnasl Size: 512B - Virtual size: 264B

lvdyhsqp
Size: - Virtual size: 144KB

bbsnynfe
Size: - Virtual size: 298KB

rqqklial
Size: - Virtual size: 24KB

bkhwqxyo
Size: - Virtual size: 3.9MB

lyvfyxor
Size: 1KB - Virtual size: 1KB

ysihgefv
Size: - Virtual size: 25KB

owflkyya
Size: - Virtual size: 344KB

vxxynjvl
Size: 651KB - Virtual size: 651KB

plqhnasl
Size: 512B - Virtual size: 264B