DibLookEx11[.]exe[.]vir

Sharing

Copy URL Twitter E-mail

General

Target

DibLookEx11.exe.vir
Size

11.3MB
MD5

528e3a3d41d10f51ab72f19fb345a071
SHA1

18aab5de76b96988573bbbcf064b2d118cd152a2
SHA256

24063cc32f62a3a0de9dc83f27c41a3a9b8ecd7129a3c2269a1c374abad3c307
SHA512

4fb29e2ebcfa7da5dff9f6df0cb8a3566d585ffb909a84af9d3cea4d1e023609e8675308ad7f5c201626749618948a0d07e2a3225001a1e4695c9cc082b9ec32
SSDEEP

6144:cqgnE6soM+6d1hWAa53cGI0EOtwRs6m+oN:GE6so0dbWXWGIs6c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DibLookEx11.exe.vir

Files

DibLookEx11.exe.vir
.exe windows:4 windows x86 arch:x86

b3db596a1d4c18dfbe5bd02b21c8513f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
UnhandledExceptionFilter
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetUnhandledExceptionFilter
GetProfileStringA
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetTimeZoneInformation
GetFileType
SetStdHandle
GetACP
HeapSize
HeapReAlloc
TerminateProcess
ExitProcess
GetCommandLineA
GetStartupInfoA
RaiseException
HeapAlloc
HeapFree
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentDirectoryA
SizeofResource
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
TlsFree
TlsAlloc
GlobalFlags
GetProcessVersion
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
FormatMessageA
LocalFree
WaitForSingleObject
GetCurrentThread
lstrcmpA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameA
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
MultiByteToWideChar
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
GlobalReAlloc
GlobalSize
GetLastError
MulDiv
SetLastError
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetCurrentThreadId
lstrcmpiA
GlobalFindAtomA
GlobalHandle
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
lstrcatA
lstrcpynA
GlobalGetAtomNameA
GlobalAddAtomA
GetVersion
lstrcpyA
lstrlenA
VirtualAlloc
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
IsBadCodePtr

user32

GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
LoadStringA
CreateDialogIndirectParamA
EndDialog
PostQuitMessage
ShowOwnedPopups
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
DestroyCursor
LoadCursorA
SetRect
PtInRect
FindWindowA
IsRectEmpty
DestroyIcon
IsZoomed
SetParent
AppendMenuA
DeleteMenu
GetSystemMenu
SetTimer
KillTimer
WindowFromPoint
GetSysColorBrush
GetClassNameA
InsertMenuA
GetMenuStringA
GetTabbedTextExtentA
SetCapture
InvertRect
GetDCEx
LockWindowUpdate
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
MapWindowPoints
GetSysColor
DispatchMessageA
ScreenToClient
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
RegisterClassA
GetWindowTextLengthA
GetWindowTextA
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
ReleaseDC
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetLastActivePopup
IsWindowVisible
IsIconic
GetFocus
EqualRect
CopyRect
GetDlgItem
InvalidateRect
GetKeyState
GetDlgCtrlID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
ShowWindow
GetDesktopWindow
GetWindow
IsWindowEnabled
SetCursor
PeekMessageA
PostMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
GetActiveWindow
wsprintfA
GetParent
GetMenuItemID
AdjustWindowRectEx
RedrawWindow
SetWindowPos
GetWindowLongA
SetWindowLongA
IsWindow
DefMDIChildProcA
DrawMenuBar
TranslateAcceleratorA
TranslateMDISysAccel
MessageBoxA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
IsWindowUnicode
UpdateWindow
EnableWindow
DefFrameProcA
CreateWindowExA
BringWindowToTop
GetMenu
GetMenuItemCount
GetSubMenu
SendMessageA
GetClipboardData
IsClipboardFormatAvailable
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetClientRect
InflateRect
GetDC
ClientToScreen
GetMenuCheckMarkDimensions
LoadBitmapA
SetPropA
GetMenuState
FillRect
SendDlgItemMessageA

gdi32

RestoreDC
SelectObject
SetBkMode
SetPolyFillMode
SetROP2
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
DeleteObject
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePen
SaveDC
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
Rectangle
DPtoLP
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
LPtoDP
GetTextExtentPoint32A
GetTextMetricsA
CreateCompatibleDC
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
CreateFontIndirectA
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
BitBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
StartDocA
DeleteDC
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
RealizePalette
GetStockObject
CreatePalette
SelectPalette
SetStretchBltMode
SetDIBitsToDevice
CreateDIBitmap
GetTextExtentPointA
StretchDIBits

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
GetFileTitleA
PrintDlgA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteKeyA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
SetFileSecurityA
RegEnumKeyA
RegQueryValueA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
GetFileSecurityA

shell32

SHGetFileInfoA
DragAcceptFiles
DragQueryFileA
DragFinish
ExtractIconA

comctl32

ord17

wininet

InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetOpenA
InternetCloseHandle
InternetOpenUrlA
InternetSetOptionExA
InternetSetStatusCallback
InternetSetFilePointer
InternetWriteFile
InternetReadFile
InternetQueryDataAvailable
HttpQueryInfoA
InternetGetLastResponseInfoA

Sections

.text
Size: 208KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11.0MB - Virtual size: 11.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b3db596a1d4c18dfbe5bd02b21c8513f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wininet

Sections

.text Size: 208KB - Virtual size: 204KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 11.0MB - Virtual size: 11.0MB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 208KB - Virtual size: 204KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 11.0MB - Virtual size: 11.0MB

.rsrc
Size: 28KB - Virtual size: 27KB