8536011f28312932460cdcf33993cf2bd865f4a248f4a020bde8fddfad0cb5a1

Sharing

Copy URL Twitter E-mail

General

Target

8536011f28312932460cdcf33993cf2bd865f4a248f4a020bde8fddfad0cb5a1
Size

82KB
MD5

b243f29d414d49ac66a41e16182830bd
SHA1

58b50e001e41db8379d2e6ea89e2f260a33c597b
SHA256

8536011f28312932460cdcf33993cf2bd865f4a248f4a020bde8fddfad0cb5a1
SHA512

18320e6153b56a72674d695a7066d4df37a5d2cd1d01af7b8676e92d63c44c49aaacb707730cbe6b0ec4a31e847410473172d886c9d9c49aa1cc1535f4dd57a7
SSDEEP

384:IJVkxEtgV4BerRx1v1ip36oYfSMF7Js0nK7DBdcF9J7xivsfRfYdVwL+nQax5Ey4:IgxcXBKv4pBYfSMFlODBOtqA6wyfK7Mc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8536011f28312932460cdcf33993cf2bd865f4a248f4a020bde8fddfad0cb5a1

Files

8536011f28312932460cdcf33993cf2bd865f4a248f4a020bde8fddfad0cb5a1
.dll windows:4 windows x86 arch:x86

a8754c1a49c656ee26010f262ad0e9f4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls
FreeLibrary
GetModuleHandleW
GetProcAddress
GetTickCount
HeapAlloc
HeapFree
HeapReAlloc
IsBadStringPtrA
IsBadStringPtrW
LoadLibraryW
QueryPerformanceCounter
QueryPerformanceFrequency

ntdll

_vsnprintf

ucrtbase

__acrt_iob_func
__stdio_common_vsprintf
__stdio_common_vswprintf
_strdup
_wcsdup
free
fwrite
getenv
memcmp
memmove
realloc
strchr
strcmp
strcpy
strcspn
strlen

user32

DialogBoxParamW
EnableWindow
EndDialog
GetDlgItem
GetWindowLongW
IsWindow
PeekMessageW
PostMessageW
RegisterWindowMessageA
SendMessageA
SendMessageW
SetWindowLongW

Exports

Exports

DSM_Entry

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a8754c1a49c656ee26010f262ad0e9f4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ntdll

ucrtbase

user32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 324B

.rodata Size: 4KB - Virtual size: 12B

.rdata Size: 4KB - Virtual size: 1KB

/4 Size: 4KB - Virtual size: 2KB

.edata Size: 4KB - Virtual size: 84B

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 12KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 932B

.text
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 324B

.rodata
Size: 4KB - Virtual size: 12B

.rdata
Size: 4KB - Virtual size: 1KB

/4
Size: 4KB - Virtual size: 2KB

.edata
Size: 4KB - Virtual size: 84B

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 12KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 932B