Descarga | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

Descarga
Size

1.2MB
MD5

1256db0d678a86a604a61dd42da07a4a
SHA1

5ba1f4e06963b726e6a127f2a4caf605c94991d6
SHA256

2bf21a583f86c4889b1653cb188aa361a20a9fbaa451d514c4d2d8bf5decc24d
SHA512

294a4777fdf76e2e72fa3e544c75967797a924038139a32b79b4456dbda45e15d4d063238a65b0256b9b9393267bfefe4967b54e6a93011a05846a96ed1fcff5
SSDEEP

24576:XDOgwgfYbK9s3kW3CG3vQ3snpR7loatbEUZqHwhv642THJ1r63LSw7b8VzkPPjwt:XDOyfYbK9sZvw8V/qQeHf6JUawknjY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Descarga

Files

Descarga
.dll windows:6 windows x86 arch:x86

fa0e64147431993f5a3e8765dd918c86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d3dx10_43.pdb

Imports

msvcrt

??1type_info@@UAE@XZ
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
_amsg_exit
free
_initterm
malloc
_XcptFilter
tolower
_stricmp
_CxxThrowException
_isnan
floor
_controlfp
_purecall
_CIatan
_CIcos
_CIasin
_finite
_CIsin
_CIatan2
_CIacos
_CIsqrt
iswspace
iswalpha
iswdigit
iswpunct
memmove
qsort
memset
??2@YAPAXI@Z
memcpy
??3@YAXPAX@Z
_vsnprintf
_vsnwprintf
__CxxFrameHandler

gdi32

GetCharacterPlacementW
GetCharacterPlacementA
SetTextColor
DeleteDC
DeleteObject
SelectObject
CreateDIBSection
GetGlyphOutlineA
GetTextMetricsA
GetObjectW
GetObjectA
SetBkMode
GetTextMetricsW
GetFontLanguageInfo
CreateFontIndirectA
CreateFontIndirectW
SetTextAlign
SetMapMode
CreateCompatibleDC
ExtTextOutA
MoveToEx
ExtTextOutW
TranslateCharsetInfo
SetBkColor

kernel32

IsProcessorFeaturePresent
WideCharToMultiByte
CreateFileW
GetFileSizeEx
ReadFile
MultiByteToWideChar
GetFullPathNameW
GetLastError
GetModuleHandleA
FreeLibrary
GetCurrentProcess
GetProcessAffinityMask
CreateThread
InterlockedIncrement
Sleep
WaitForSingleObject
InterlockedDecrement
CreateFileA
WaitForMultipleObjects
ReleaseSemaphore
ReleaseMutex
CloseHandle
CreateSemaphoreA
CreateMutexA
LoadLibraryA
LeaveCriticalSection
EnterCriticalSection
GetProcAddress
DisableThreadLibraryCalls
InitializeCriticalSection
DeleteCriticalSection
GetFileSize
GetModuleFileNameA
InterlockedExchange
InterlockedCompareExchange
OutputDebugStringA
RtlUnwind
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetVersion
WriteFile
LockResource
FindResourceW
LoadResource
SizeofResource
FindResourceA
DebugBreak

advapi32

RegCloseKey
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA

ole32

CreateStreamOnHGlobal

Exports

Exports

@3DX10CheckVersion
@3DX10CompileFromFileA
@3DX10CompileFromFileW
@3DX10CompileFromMemory
@3DX10CompileFromResourceA
@3DX10CompileFromResourceW
@3DX10ComputeNormalMap
@3DX10CreateAsyncCompilerProcessor
@3DX10CreateAsyncEffectCreateProcessor
@3DX10CreateAsyncEffectPoolCreateProcessor
@3DX10CreateAsyncFileLoaderA
@3DX10CreateAsyncFileLoaderW
@3DX10CreateAsyncMemoryLoader
@3DX10CreateAsyncResourceLoaderA
@3DX10CreateAsyncResourceLoaderW
@3DX10CreateAsyncShaderPreprocessProcessor
@3DX10CreateAsyncShaderResourceViewProcessor
@3DX10CreateAsyncTextureInfoProcessor
@3DX10CreateAsyncTextureProcessor
@3DX10CreateDevice
@3DX10CreateDeviceAndSwapChain
@3DX10CreateEffectFromFileA
@3DX10CreateEffectFromFileW
@3DX10CreateEffectFromMemory
@3DX10CreateEffectFromResourceA
@3DX10CreateEffectFromResourceW
@3DX10CreateEffectPoolFromFileA
@3DX10CreateEffectPoolFromFileW
@3DX10CreateEffectPoolFromMemory
@3DX10CreateEffectPoolFromResourceA
@3DX10CreateEffectPoolFromResourceW
@3DX10CreateFontA
@3DX10CreateFontIndirectA
@3DX10CreateFontIndirectW
@3DX10CreateFontW
@3DX10CreateMesh
@3DX10CreateShaderResourceViewFromFileA
@3DX10CreateShaderResourceViewFromFileW
@3DX10CreateShaderResourceViewFromMemory
@3DX10CreateShaderResourceViewFromResourceA
@3DX10CreateShaderResourceViewFromResourceW
@3DX10CreateSkinInfo
@3DX10CreateSprite
@3DX10CreateTextureFromFileA
@3DX10CreateTextureFromFileW
@3DX10CreateTextureFromMemory
@3DX10CreateTextureFromResourceA
@3DX10CreateTextureFromResourceW
@3DX10CreateThreadPump
@3DX10FilterTexture
@3DX10GetFeatureLevel1
@3DX10GetImageInfoFromFileA
@3DX10GetImageInfoFromFileW
@3DX10GetImageInfoFromMemory
@3DX10GetImageInfoFromResourceA
@3DX10GetImageInfoFromResourceW
@3DX10LoadTextureFromTexture
@3DX10PreprocessShaderFromFileA
@3DX10PreprocessShaderFromFileW
@3DX10PreprocessShaderFromMemory
@3DX10PreprocessShaderFromResourceA
@3DX10PreprocessShaderFromResourceW
@3DX10SHProjectCubeMap
@3DX10SaveTextureToFileA
@3DX10SaveTextureToFileW
@3DX10SaveTextureToMemory
@3DX10UnsetAllDeviceObjects
@3DXBoxBoundProbe
@3DXColorAdjustContrast
@3DXColorAdjustSaturation
@3DXComputeBoundingBox
@3DXComputeBoundingSphere
@3DXCpuOptimizations
@3DXCreateMatrixStack
@3DXFloat16To32Array
@3DXFloat32To16Array
@3DXFresnelTerm
@3DXIntersectTri
@3DXMatrixAffineTransformation
@3DXMatrixAffineTransformation2D
@3DXMatrixDecompose
@3DXMatrixDeterminant
@3DXMatrixInverse
@3DXMatrixLookAtLH
@3DXMatrixLookAtRH
@3DXMatrixMultiply
@3DXMatrixMultiplyTranspose
@3DXMatrixOrthoLH
@3DXMatrixOrthoOffCenterLH
@3DXMatrixOrthoOffCenterRH
@3DXMatrixOrthoRH
@3DXMatrixPerspectiveFovLH
@3DXMatrixPerspectiveFovRH
@3DXMatrixPerspectiveLH
@3DXMatrixPerspectiveOffCenterLH
@3DXMatrixPerspectiveOffCenterRH
@3DXMatrixPerspectiveRH
@3DXMatrixReflect
@3DXMatrixRotationAxis
@3DXMatrixRotationQuaternion
@3DXMatrixRotationX
@3DXMatrixRotationY
@3DXMatrixRotationYawPitchRoll
@3DXMatrixRotationZ
@3DXMatrixScaling
@3DXMatrixShadow
@3DXMatrixTransformation
@3DXMatrixTransformation2D
@3DXMatrixTranslation
@3DXMatrixTranspose
@3DXPlaneFromPointNormal
@3DXPlaneFromPoints
@3DXPlaneIntersectLine
@3DXPlaneNormalize
@3DXPlaneTransform
@3DXPlaneTransformArray
@3DXQuaternionBaryCentric
@3DXQuaternionExp
@3DXQuaternionInverse
@3DXQuaternionLn
@3DXQuaternionMultiply
@3DXQuaternionNormalize
@3DXQuaternionRotationAxis
@3DXQuaternionRotationMatrix
@3DXQuaternionRotationYawPitchRoll
@3DXQuaternionSlerp
@3DXQuaternionSquad
@3DXQuaternionSquadSetup
@3DXQuaternionToAxisAngle
@3DXSHAdd
@3DXSHDot
@3DXSHEvalConeLight
@3DXSHEvalDirection
@3DXSHEvalDirectionalLight
@3DXSHEvalHemisphereLight
@3DXSHEvalSphericalLight
@3DXSHMultiply2
@3DXSHMultiply3
@3DXSHMultiply4
@3DXSHMultiply5
@3DXSHMultiply6
@3DXSHRotate
@3DXSHRotateZ
@3DXSHScale
@3DXSphereBoundProbe
@3DXVec2BaryCentric
@3DXVec2CatmullRom
@3DXVec2Hermite
@3DXVec2Normalize
@3DXVec2Transform
@3DXVec2TransformArray
@3DXVec2TransformCoord
@3DXVec2TransformCoordArray
@3DXVec2TransformNormal
@3DXVec2TransformNormalArray
@3DXVec3BaryCentric
@3DXVec3CatmullRom
@3DXVec3Hermite
@3DXVec3Normalize
@3DXVec3Project
@3DXVec3ProjectArray
@3DXVec3Transform
@3DXVec3TransformArray
@3DXVec3TransformCoord
@3DXVec3TransformCoordArray
@3DXVec3TransformNormal
@3DXVec3TransformNormalArray
@3DXVec3Unproject
@3DXVec3UnprojectArray
@3DXVec4BaryCentric
@3DXVec4CatmullRom
@3DXVec4Cross
@3DXVec4Hermite
@3DXVec4Normalize
@3DXVec4Transform
Crash

Sections

.text
Size: 416KB - Virtual size: 415KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 796KB - Virtual size: 792KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa0e64147431993f5a3e8765dd918c86

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

gdi32

kernel32

advapi32

ole32

Exports

Exports

Sections

.text Size: 416KB - Virtual size: 415KB

.data Size: 21KB - Virtual size: 23KB

.rsrc Size: 796KB - Virtual size: 792KB

.reloc Size: 14KB - Virtual size: 14KB

.text
Size: 416KB - Virtual size: 415KB

.data
Size: 21KB - Virtual size: 23KB

.rsrc
Size: 796KB - Virtual size: 792KB

.reloc
Size: 14KB - Virtual size: 14KB