f5b3da442738a3fb87f0f54dd5c19148937716f9f9946a5c9ea4fcbf3f5ffb50

Sharing

Copy URL Twitter E-mail

General

Target

f5b3da442738a3fb87f0f54dd5c19148937716f9f9946a5c9ea4fcbf3f5ffb50
Size

6.5MB
MD5

9b9811210a7546ab13a9c8bd4bbd871f
SHA1

5e098b7d89122d6a050a383170533639087fb79e
SHA256

f5b3da442738a3fb87f0f54dd5c19148937716f9f9946a5c9ea4fcbf3f5ffb50
SHA512

9c93a85256527f465b0e0b939b9b1ebb70ed0921bd907846eb06393d945013a2bf33f7d2716615d38631228bde6d6f1f65180e4522def90b91fdb1e99189a1a9
SSDEEP

98304:U/FFo1D71QQ4SQ9hoFLI9uYHvaw9dBuTagI2WXPlhLvSSZPQPMy0S5uSsTsSBIEK:2cfmSQvjYYSguu8EWS5QPOMPs0c97

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5b3da442738a3fb87f0f54dd5c19148937716f9f9946a5c9ea4fcbf3f5ffb50

Files

f5b3da442738a3fb87f0f54dd5c19148937716f9f9946a5c9ea4fcbf3f5ffb50
.dll windows:6 windows x86 arch:x86

d732b69898a5add7395af1a0d1ac4c7f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetConsoleMode
GetConsoleCP
WriteFile
CloseHandle
GetFileType
GetStdHandle
GetOEMCP
IsValidCodePage
ReadFile
IsDebuggerPresent
GetProcessHeap
HeapSize
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
SetFilePointerEx
GetModuleFileNameW
LoadLibraryExW
SetStdHandle
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
WriteConsoleW
ReadConsoleW
OutputDebugStringW
CreateFileW
SetEndOfFile
CreateThread
EnumSystemLocalesW
LocalFree
DeleteCriticalSection
CreateFileMappingA
GlobalFree
FindFirstFileA
GetACP
SetCommTimeouts
SetCommBreak
GlobalLock
InitializeSListHead
GlobalMemoryStatus
WaitNamedPipeA
GetDateFormatW
ExitProcess
DeleteFileA
FindNextFileW
FlushFileBuffers
GetSystemDirectoryA
CreateProcessA
GetSystemTimeAdjustment
TlsSetValue
GetCommState
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapFree
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
GetCommandLineA
GetCurrentThreadId
GetCPInfo
HeapAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
IsProcessorFeaturePresent

user32

GetSystemMetrics
ShowOwnedPopups
EndPaint
DestroyWindow
GetMessageA
IsIconic
KillTimer
MessageBeep
SetParent
UnregisterClassA
RedrawWindow
DrawMenuBar
RemoveMenu
ReleaseCapture
InsertMenuA
SetDlgItemTextA
ValidateRect
CheckMenuItem
GetMessageTime
ToAsciiEx
SetWindowRgn
MsgWaitForMultipleObjects
LoadStringA
EnumWindows
CreateIconIndirect
WaitMessage
GetDC
SetPropA
SetWindowLongA
SetScrollPos
DestroyCaret
GetDesktopWindow
SystemParametersInfoA

gdi32

GetWindowOrgEx
GetTextExtentPoint32A
SetWindowExtEx
Polygon
CreateHalftonePalette
CreatePenIndirect
CreateRectRgnIndirect
RectInRegion
SetMapMode
CreateBrushIndirect
CreateBitmapIndirect
SelectPalette
SetPaletteEntries
GetTextExtentExPointA
GetCharWidth32A
GetCharABCWidthsFloatA
Polyline
CreatePen
SetTextAlign
CreateDIBitmap
GetPixel
RestoreDC
UpdateColors
MoveToEx
Arc
ExtFloodFill
GetDeviceCaps
PlayEnhMetaFile
SetPolyFillMode
GetTextExtentPointW
RectVisible
GetStockObject
DeleteDC

advapi32

GetLengthSid
RegDeleteValueA
SetSecurityDescriptorDacl
RegQueryValueExW
CopySid
RegCloseKey
RegDeleteKeyA

ole32

CoTaskMemFree

Sections

.text
Size: 564KB - Virtual size: 564KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 12.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d732b69898a5add7395af1a0d1ac4c7f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 564KB - Virtual size: 564KB

.data Size: 5.9MB - Virtual size: 12.2MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 14KB - Virtual size: 13KB

.text
Size: 564KB - Virtual size: 564KB

.data
Size: 5.9MB - Virtual size: 12.2MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 14KB - Virtual size: 13KB