aee2b59d08aba000d6bec953931adb20N

Sharing

Copy URL Twitter E-mail

General

Target

aee2b59d08aba000d6bec953931adb20N
Size

25KB
MD5

aee2b59d08aba000d6bec953931adb20
SHA1

c11d5a18767fdc3475adf7651855bda2e17b4037
SHA256

32e6a6f7b86ed9c39ffbf6d776f139d99b5b0395d46d7b33cdeed65dbe711704
SHA512

c24a69863a0cefd522b3919d2af84acaa36e2b477f533116676f6ac5418ae3202be74ff1dd0c21e8d3eedc68e1fe63ebdbb326a7011a4b04163256cbc7cdf21e
SSDEEP

768:HlwHH3EXoFvsr42Kiwt2ROFeSqneTCnR:Fw3EXAK42N3ROL5On

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aee2b59d08aba000d6bec953931adb20N

Files

aee2b59d08aba000d6bec953931adb20N
.dll windows:4 windows x86 arch:x86

229ed70fd15a70fe897f5ac123eaecdf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\buildbot\win32-comm-central-nightly\build\objdir-tb\mozilla\mozglue\build\mozglue.pdb

Imports

kernel32

GetEnvironmentVariableA
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
LeaveCriticalSection
VirtualFree
VirtualAlloc
TlsSetValue
GetSystemInfo
TlsAlloc
DisableThreadLibraryCalls
TlsGetValue
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

msvcr80

__iob_func
_encode_pointer
_malloc_crt
fprintf
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
fflush
exit
strncpy
wcslen
wcsncpy
_errno
memcpy
memset
abort
strlen
_write
free

Exports

Exports

?HashBytes@mozilla@@YAIPBXI@Z
MOZ_Assert
MOZ_Crash
_recalloc
_strdup
_wcsdup
calloc
free
frex
je_malloc_usable_size_in_advance
jemalloc_stats
malloc
malloc_usable_size
memalign
posix_memalign
realloc
strdup
strndup
valloc
wcsdup

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

229ed70fd15a70fe897f5ac123eaecdf

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

msvcr80

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB