e1099184813fd7a82e9ff15fd25fcd1f3b93e6871883a073712bc51f6a019913N

Sharing

Copy URL Twitter E-mail

General

Target

e1099184813fd7a82e9ff15fd25fcd1f3b93e6871883a073712bc51f6a019913N
Size

6.4MB
MD5

d2d2024cad78902e37f7135ac2482960
SHA1

d54c7aaee778afa01fc69011dc80c561ff7454a8
SHA256

e1099184813fd7a82e9ff15fd25fcd1f3b93e6871883a073712bc51f6a019913
SHA512

72e5df37f54b1585e84679d8e1de4471c8933622ec525abe3ffaf35469f671196cc1851c61116dae64d669aa761056e731be77b07e80b2ea965f9642080d659e
SSDEEP

98304:5zRiupyofcc2jLME4YuHQQrka+nm9fklq3i7h6N7F4QKYlZziqbO1Ybiy:tu5DvMEtuZFfks3i7kFOYDZbL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1099184813fd7a82e9ff15fd25fcd1f3b93e6871883a073712bc51f6a019913N

Files

e1099184813fd7a82e9ff15fd25fcd1f3b93e6871883a073712bc51f6a019913N
.dll windows:6 windows x86 arch:x86

8e1158eaa87016295a61a0cc7d55ec4e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
SetConsoleTextAttribute
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
CreateFileW
ReadConsoleW
WriteConsoleW
SetStdHandle
OutputDebugStringW
LoadLibraryExW
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
CloseHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
GetStdHandle
GetModuleFileNameW
WriteFile
GetFileType
GetACP
IsValidCodePage
IsDebuggerPresent
GetProcessHeap
HeapSize
ExitProcess
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
IsProcessorFeaturePresent
GetProcAddress
GetModuleHandleW
GetStartupInfoW
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
GetThreadTimes
GetStringTypeW
LoadLibraryA
CreateNamedPipeA
CreateProcessA
MulDiv
OpenProcess
SetCommTimeouts
SetEndOfFile
SetCommState
GetWindowsDirectoryA
GetCurrentThread
SetCommBreak
QueryPerformanceCounter
GetCurrentProcess
WaitNamedPipeA
GetCPInfo
CreateFileA
CreateThread
LocalFree
OpenFileMappingA
GetOEMCP
CreateEventA
GetSystemTimeAsFileTime
ExpandEnvironmentStringsA
GetTickCount
GetModuleHandleExW
FreeLibrary
GetModuleFileNameA
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
GetLastError
HeapReAlloc
HeapFree
RaiseException
RtlUnwind
HeapAlloc
GetCommandLineA
GetCurrentThreadId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetConsoleMode

user32

EndPaint
DestroyAcceleratorTable
GetSystemMenu
MapDialogRect
GetParent
GetWindowTextLengthA
OffsetRect
GetKeyboardLayout
GetScrollInfo
UnionRect
PeekMessageA
ReleaseDC
DefWindowProcA
FlashWindow
ReleaseCapture
SetWindowTextA
EnableWindow
EndMenu
SetDlgItemTextA
DestroyWindow
SetTimer
GetWindowRect
SetKeyboardState
IsZoomed
RemovePropA
GetClientRect
CreateIconIndirect
WaitMessage
GetDC
ShowCursor
UnregisterClassA
RedrawWindow
DestroyCursor
GetDesktopWindow
SetMenu
IsDlgButtonChecked
IsWindow
RemoveMenu
MessageBoxW
BeginDeferWindowPos
GetSystemMetrics
ValidateRgn
DialogBoxParamA
DrawFrameControl

gdi32

MoveToEx
SetLayout
CreateFontIndirectA
GetDIBits
CreateBitmap
DeleteObject
CreateCompatibleBitmap
GetObjectType
SelectPalette
GetDIBColorTable
GetTextExtentExPointA
GetNearestPaletteIndex
CreatePatternBrush
SetROP2
GetPixel
CloseEnhMetaFile
CreateEnhMetaFileW
CreateSolidBrush
SetWindowOrgEx
PatBlt
CreatePalette
GetObjectW
GetClipBox
EndDoc
GetCharABCWidthsFloatA

advapi32

AllocateAndInitializeSid
LookupPrivilegeValueW
GetUserNameA
RegOpenKeyExA

Sections

.text
Size: 521KB - Virtual size: 520KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e1158eaa87016295a61a0cc7d55ec4e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 521KB - Virtual size: 520KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 521KB - Virtual size: 520KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 13KB - Virtual size: 13KB