fccfcd3cdd267bbdab2b19876f5421e3c1e5387064ffc8c8d9a21bc78fa65cfe

Sharing

Copy URL Twitter E-mail

General

Target

fccfcd3cdd267bbdab2b19876f5421e3c1e5387064ffc8c8d9a21bc78fa65cfe
Size

23KB
MD5

809bc99bad0f08c28f0ff2862b32e84d
SHA1

8f45852e9fd856a0ca8fdededdaeb982460bab55
SHA256

fccfcd3cdd267bbdab2b19876f5421e3c1e5387064ffc8c8d9a21bc78fa65cfe
SHA512

98a6bea5dea3eb2b38782f1e446d79bd963f51505051593cfa70295be5e572aaadeb3d60a57b6765298b340a14ea4667599a5046e0b9d4ad67b89b613e776bc7
SSDEEP

384:k/eWCm2e3tU2GTjXhbqHFFjfw0giYhNli9p8gA00Jpg:keW42EjwL1gcp9Ipg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fccfcd3cdd267bbdab2b19876f5421e3c1e5387064ffc8c8d9a21bc78fa65cfe

Files

fccfcd3cdd267bbdab2b19876f5421e3c1e5387064ffc8c8d9a21bc78fa65cfe
.dll windows:6 windows x64 arch:x64

672e2a31f03a76e00593af62d0515314

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Administrator\Documents\vcpkg\buildtrees\boost-stacktrace\x64-o1-windows-rel\stage\bin\boost_stacktrace_windbg-vc143-mt-x64-1_85.pdb

Imports

dbgeng

DebugCreate

kernel32

InitializeSListHead
DisableThreadLibraryCalls
RtlCaptureStackBackTrace
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
GetSystemTimeAsFileTime
GetCurrentThreadId

msvcp140

_Mtx_unlock
_Mtx_lock
_Mtx_init_in_situ
?_Xout_of_range@std@@YAXPEBD@Z
?_Throw_Cpp_error@std@@YAXH@Z
?_Xlength_error@std@@YAXPEBD@Z
_Mtx_destroy_in_situ

vcruntime140

memmove
_CxxThrowException
memcpy
memchr
__C_specific_handler
__std_type_info_destroy_list
memset
__std_terminate
__std_exception_copy
__std_exception_destroy

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_invalid_parameter_noinfo_noreturn
_seh_filter_dll

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
free

Exports

Exports

?collect@this_thread_frames@detail@stacktrace@boost@@SA_KPEAPEBX_K1@Z
?dump@detail@stacktrace@boost@@YA_KPEAXPEBQEBX_K@Z
?dump@detail@stacktrace@boost@@YA_KPEBDPEBQEBX_K@Z
?name@frame@stacktrace@boost@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?source_file@frame@stacktrace@boost@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?source_line@frame@stacktrace@boost@@QEBA_KXZ
?to_string@detail@stacktrace@boost@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBVframe@23@_K@Z
?to_string@stacktrace@boost@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBVframe@12@@Z

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

672e2a31f03a76e00593af62d0515314

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

dbgeng

kernel32

msvcp140

vcruntime140

vcruntime140_1

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 1KB

.pdata Size: 1024B - Virtual size: 984B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 88B

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 1024B - Virtual size: 984B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 88B