f560e9dc249dc82e6d2f8cb0a37d965264cff7825f03a919b058e423e3670d04

Sharing

Copy URL Twitter E-mail

General

Target

f560e9dc249dc82e6d2f8cb0a37d965264cff7825f03a919b058e423e3670d04
Size

182KB
MD5

7a7b01ab6c73e5fc698a4901901df58e
SHA1

4b1619448f7b5d810beddfa49673c87867d14299
SHA256

f560e9dc249dc82e6d2f8cb0a37d965264cff7825f03a919b058e423e3670d04
SHA512

54ab3fc8193d07add2b28cfce50cfe6f717a7cd3a05f2c111845d33198aeac333039f8dd17dea206b13ad1d44da7f9268d8f6ba0b3976fe2a3d1d0107e3205e8
SSDEEP

3072:qGwtbltjLmQY1grGqvpXPntxp/07jzQkZuBnJ9zvi+UyWAs/3+F++B+Z8YqDX3kJ:xwDhLmB1up/bgjzw9zvFUuq7+BLDkIgr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f560e9dc249dc82e6d2f8cb0a37d965264cff7825f03a919b058e423e3670d04

Files

f560e9dc249dc82e6d2f8cb0a37d965264cff7825f03a919b058e423e3670d04
.dll windows:6 windows x64 arch:x64

a1841e654115e7be73046c47661867fb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

python311

PyInterpreterState_Get
PyDict_DelItemString
PyUnicode_FromString
PyEval_AcquireThread
_PyType_Lookup
PyGILState_GetThisThreadState
PyBuffer_Release
PyNumber_Check
PyByteArray_Type
PyType_Type
PySequence_Tuple
PyEval_RestoreThread
_PyObject_GetDictPtr
PyException_SetCause
PyCapsule_SetContext
PyGILState_Ensure
PyByteArray_Size
_Py_NotImplementedStruct
PyIndex_Check
PyProperty_Type
PyThread_tss_create
PyObject_HasAttrString
PyObject_CallObject
PyThread_tss_set
PyCMethod_New
PyTuple_SetItem
PyMem_Free
PyObject_IsInstance
PyInstanceMethod_New
PyException_SetContext
PySequence_Check
PyList_GetItem
PyDict_New
PyBytes_Size
PyCapsule_GetName
PyCapsule_New
PyException_SetTraceback
PyThread_tss_get
PyExc_FutureWarning
PyTuple_Size
PyList_Append
PyErr_Clear
PyObject_GetAttrString
PyType_Ready
PyModule_Create2
PyList_New
PyUnicode_FromFormat
PyObject_ClearWeakRefs
PyObject_GenericGetDict
PyLong_AsLong
PyObject_CallFunctionObjArgs
PyObject_SetItem
PyCapsule_GetPointer
PyTuple_GetItem
_Py_Dealloc
PyExc_OverflowError
PyErr_Restore
PyType_IsSubtype
PyFloat_Type
_Py_FalseStruct
PyThreadState_New
PyDict_Type
PyErr_Format
PyDict_Next
PyExc_ValueError
PyErr_WriteUnraisable
PyErr_SetString
PyByteArray_AsString
PyList_Size
PyDict_Size
PyObject_GenericSetDict
PyTuple_New
_Py_NoneStruct
PyBytes_AsStringAndSize
PyGILState_Release
PyBytes_FromString
PyFrame_GetLineNumber
PyObject_GetAttr
PyCapsule_GetContext
Py_GetVersion
PyDict_GetItemWithError
PyExc_MemoryError
PyInstanceMethod_Type
PyObject_GC_UnTrack
PyObject_SetAttrString
PyExc_RuntimeError
_PyThreadState_UncheckedGet
PyEval_SaveThread
PyUnicode_AsUTF8AndSize
PyUnicode_DecodeUTF8
PyErr_Occurred
PySequence_GetItem
PyErr_NormalizeException
PyBytes_AsString
PyImport_ImportModule
PyErr_WarnEx
PyObject_Malloc
PyLong_AsUnsignedLong
PyThreadState_Get
PyExc_SystemError
PyWeakref_NewRef
_Py_TrueStruct
PyCapsule_SetPointer
PyCFunction_Type
PyExc_ImportError
PyObject_SetAttr
PyExc_BufferError
PyMem_Calloc
PyExc_IndexError
PyFrame_GetCode
PyFrame_GetBack
PyBaseObject_Type
PyCallable_Check
PyModule_Type
PyUnicode_AsUTF8String
PyObject_Str
PyDict_Copy
PyCapsule_Type
PyThreadState_Clear
PyExc_TypeError
PyThreadState_DeleteCurrent
PyErr_Fetch
PyInterpreterState_GetDict
PyNumber_Long
PyUnicode_AsEncodedString
PySequence_Size
PyObject_Repr

tket

??0Circuit@tket@@QEAA@AEBV01@@Z
??0UnitaryTableauBox@tket@@QEAA@AEBV?$Matrix@_N$0?0$0?0$0A@$0?0$0?0@Eigen@@0AEBV?$Matrix@_N$0?0$00$0A@$0?0$00@3@001@Z
??0UnitaryTableauBox@tket@@QEAA@AEBVUnitaryTableau@1@@Z
?get_tableau@UnitaryTableauBox@tket@@QEBAAEBVUnitaryTableau@2@XZ
??0UnitaryTableau@tket@@QEAA@AEBV?$Matrix@_N$0?0$0?0$0A@$0?0$0?0@Eigen@@0AEBV?$Matrix@_N$0?0$00$0A@$0?0$00@3@001@Z
??0UnitaryTableau@tket@@QEAA@I@Z
?get_xrow@UnitaryTableau@tket@@QEBA?AV?$PauliTensor@V?$map@VQubit@tket@@W4Pauli@2@U?$less@VQubit@tket@@@std@@V?$allocator@U?$pair@$$CBVQubit@tket@@W4Pauli@2@@std@@@5@@std@@I@2@AEBVQubit@2@@Z
?get_zrow@UnitaryTableau@tket@@QEBA?AV?$PauliTensor@V?$map@VQubit@tket@@W4Pauli@2@U?$less@VQubit@tket@@@std@@V?$allocator@U?$pair@$$CBVQubit@tket@@W4Pauli@2@@std@@@5@@std@@I@2@AEBVQubit@2@@Z
?get_row_product@UnitaryTableau@tket@@QEBA?AV?$PauliTensor@V?$map@VQubit@tket@@W4Pauli@2@U?$less@VQubit@tket@@@std@@V?$allocator@U?$pair@$$CBVQubit@tket@@W4Pauli@2@@std@@@5@@std@@I@2@AEBV32@@Z
?apply_gate_at_front@UnitaryTableau@tket@@QEAAXW4OpType@2@AEBV?$vector@VQubit@tket@@V?$allocator@VQubit@tket@@@std@@@std@@@Z
?apply_gate_at_end@UnitaryTableau@tket@@QEAAXW4OpType@2@AEBV?$vector@VQubit@tket@@V?$allocator@VQubit@tket@@@std@@@std@@@Z
??$cast_container@V?$map@VQubit@tket@@W4Pauli@2@U?$less@VQubit@tket@@@std@@V?$allocator@U?$pair@$$CBVQubit@tket@@W4Pauli@2@@std@@@5@@std@@V12@@tket@@YA?AV?$map@VQubit@tket@@W4Pauli@2@U?$less@VQubit@tket@@@std@@V?$allocator@U?$pair@$$CBVQubit@tket@@W4Pauli@2@@std@@@5@@std@@AEBV12@@Z
?unitary_tableau_to_circuit@tket@@YA?AVCircuit@1@AEBVUnitaryTableau@1@@Z
?get_row_product@UnitaryRevTableau@tket@@QEBA?AV?$PauliTensor@V?$map@VQubit@tket@@W4Pauli@2@U?$less@VQubit@tket@@@std@@V?$allocator@U?$pair@$$CBVQubit@tket@@W4Pauli@2@@std@@@5@@std@@I@2@AEBV32@@Z
?circuit_to_unitary_rev_tableau@tket@@YA?AVUnitaryRevTableau@1@AEBVCircuit@1@@Z
?circuit_to_unitary_tableau@tket@@YA?AVUnitaryTableau@1@AEBVCircuit@1@@Z
??0UnitaryRevTableau@tket@@QEAA@AEBV?$Matrix@_N$0?0$0?0$0A@$0?0$0?0@Eigen@@0AEBV?$Matrix@_N$0?0$00$0A@$0?0$00@3@001@Z
??0UnitaryRevTableau@tket@@QEAA@I@Z
?get_xrow@UnitaryRevTableau@tket@@QEBA?AV?$PauliTensor@V?$map@VQubit@tket@@W4Pauli@2@U?$less@VQubit@tket@@@std@@V?$allocator@U?$pair@$$CBVQubit@tket@@W4Pauli@2@@std@@@5@@std@@I@2@AEBVQubit@2@@Z
?get_zrow@UnitaryRevTableau@tket@@QEBA?AV?$PauliTensor@V?$map@VQubit@tket@@W4Pauli@2@U?$less@VQubit@tket@@@std@@V?$allocator@U?$pair@$$CBVQubit@tket@@W4Pauli@2@@std@@@5@@std@@I@2@AEBVQubit@2@@Z
?apply_gate_at_front@UnitaryRevTableau@tket@@QEAAXW4OpType@2@AEBV?$vector@VQubit@tket@@V?$allocator@VQubit@tket@@@std@@@std@@@Z
?apply_gate_at_end@UnitaryRevTableau@tket@@QEAAXW4OpType@2@AEBV?$vector@VQubit@tket@@V?$allocator@VQubit@tket@@@std@@@std@@@Z
?unitary_rev_tableau_to_circuit@tket@@YA?AVCircuit@1@AEBVUnitaryRevTableau@1@@Z
??6tket@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVUnitaryRevTableau@0@@Z
??6tket@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVUnitaryTableau@0@@Z
??$default_coeff@I@tket@@YAIXZ
??$cast_coeff@IV?$complex@N@std@@@tket@@YA?AV?$complex@N@std@@AEBI@Z

msvcp140

?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?__ExceptionPtrRethrow@@YAXPEBX@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrCompare@@YA_NPEBX0@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrToBool@@YA_NPEBX@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z

vcruntime140_1

__CxxFrameHandler4

vcruntime140

memmove
__std_exception_destroy
__std_exception_copy
__std_type_info_compare
_purecall
__std_type_info_hash
__std_type_info_name
__std_terminate
strchr
__std_type_info_destroy_list
__current_exception
__current_exception_context
__C_specific_handler
_CxxThrowException
memset
memcpy
memcmp
memchr
__RTDynamicCast

api-ms-win-crt-runtime-l1-1-0

_seh_filter_dll
_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_invalid_parameter_noinfo_noreturn
_initterm_e
_initterm
terminate
abort

api-ms-win-crt-heap-l1-1-0

_aligned_malloc
free
_callnewh
malloc
_aligned_free

api-ms-win-crt-string-l1-1-0

strncmp
strcmp
_strdup

kernel32

ReleaseSRWLockExclusive
InitOnceBeginInitialize
InitOnceComplete
WakeAllConditionVariable
IsDebuggerPresent
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
InitializeSListHead
SleepConditionVariableSRW
AcquireSRWLockExclusive

api-ms-win-crt-math-l1-1-0

ceilf

Exports

Exports

PyInit_tableau

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1841e654115e7be73046c47661867fb

Headers

DLL Characteristics

File Characteristics

Imports

python311

tket

msvcp140

vcruntime140_1

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-string-l1-1-0

kernel32

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 127KB - Virtual size: 126KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 3KB - Virtual size: 4KB

.pdata Size: 6KB - Virtual size: 5KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 304B

.text
Size: 127KB - Virtual size: 126KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 3KB - Virtual size: 4KB

.pdata
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 304B