28238ef12405254b47f16fd6b5d5da90c68ef179bee586bfdd359f0db9400ec3N

Sharing

Copy URL Twitter E-mail

General

Target

28238ef12405254b47f16fd6b5d5da90c68ef179bee586bfdd359f0db9400ec3N
Size

36KB
MD5

39e3fb59736108f7504708ac13b689c0
SHA1

344fff4586f0c9cedef44fa31e219a9311852bc8
SHA256

28238ef12405254b47f16fd6b5d5da90c68ef179bee586bfdd359f0db9400ec3
SHA512

9561c9eb5054ae7f9b9888b6a289777048eb937fb66699c6a91de1db6a9808800684865468e32e000dc74326e5d35d68b506d26f7989d52fdd64799b16a49a2c
SSDEEP

768:e94nYX6Rb4mvTuNt2cxhTG4EdkanPanBXX+:0nXKum4wk6PSXu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28238ef12405254b47f16fd6b5d5da90c68ef179bee586bfdd359f0db9400ec3N

Files

28238ef12405254b47f16fd6b5d5da90c68ef179bee586bfdd359f0db9400ec3N
.dll windows:6 windows x86 arch:x86

1b8adea8a55d74196cc9ae4009199997

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

sdl2

SDL_RemoveTimer
SDL_UnlockMutex
SDL_FilterEvents
SDL_CreateMutex
SDL_GetWindowData
SDL_JoystickGetGUIDString
SDL_GetMouseState
SDL_PeepEvents
SDL_FlushEvent
SDL_AddTimer
SDL_GetTicks
SDL_GetWindowGrab
SDL_EventState
SDL_FlushEvents
SDL_LockMutex
SDL_PushEvent
SDL_ShowCursor
SDL_JoystickGetDeviceGUID
SDL_SetRelativeMouseMode
SDL_Delay
SDL_GetError
SDL_SetWindowGrab
SDL_GetWindowKeyboardGrab
SDL_PumpEvents
SDL_GetWindowFromID
SDL_JoystickGetDeviceInstanceID
SDL_SetEventFilter
SDL_RegisterEvents
SDL_free
SDL_WasInit
SDL_SetWindowKeyboardGrab

python311

PyDict_GetItemString
PyDict_GetItem
_Py_NotImplementedStruct
PyDict_DelItem
_PyObject_New
PyExc_TypeError
PyCapsule_Type
PyObject_IsTrue
_Py_TrueStruct
PyUnicode_FromString
PyEval_RestoreThread
_PyArg_ParseTupleAndKeywords_SizeT
PyDict_Next
PyExc_ValueError
PyErr_NoMemory
PyFloat_FromDouble
PyLong_FromLongLong
PyDict_SetItemString
PyTuple_New
_Py_NoneStruct
PyLong_FromLong
PyEval_SaveThread
PyObject_GenericGetAttr
PyErr_Occurred
PyImport_ImportModule
PyType_GenericNew
_Py_BuildValue_SizeT
PyBool_FromLong
Py_Exit
PySequence_Size
PySequence_Check
PyDict_SetItem
PyObject_GenericSetAttr
PyCapsule_New
PyObject_RichCompareBool
PyList_Append
PyObject_GetAttrString
PyDict_Type
PyModule_Create2
PyList_New
PyUnicode_FromFormat
_PyArg_ParseTuple_SizeT
PyModule_AddObject
PyCapsule_GetPointer
PyObject_Free
_Py_Dealloc
PyDict_New
PyErr_SetString
_Py_FalseStruct
PyType_Ready

kernel32

UnhandledExceptionFilter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
QueryPerformanceCounter

vcruntime140

_except_handler4_common
memset
__std_type_info_destroy_list
memcpy

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vfprintf

api-ms-win-crt-heap-l1-1-0

malloc
free

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_execute_onexit_table
_register_onexit_function
_cexit
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_initialize_onexit_table

Exports

Exports

PyInit_event

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b8adea8a55d74196cc9ae4009199997

Headers

DLL Characteristics

File Characteristics

Imports

sdl2

python311

kernel32

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 1024B - Virtual size: 2KB

.gfids Size: 512B - Virtual size: 20B

.rsrc Size: 512B - Virtual size: 248B

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 21KB - Virtual size: 20KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 1024B - Virtual size: 2KB

.gfids
Size: 512B - Virtual size: 20B

.rsrc
Size: 512B - Virtual size: 248B

.reloc
Size: 3KB - Virtual size: 2KB