ISmm7Q94U[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

ISmm7Q94U.dll
Size

822KB
MD5

4a659a5e48556eb45b4f05ecede16671
SHA1

135d7bf7ca4d37887892a0c272ca549602cc5145
SHA256

15e9869fff87b5456e40358c52007c9e3f7dbfbe9096aea8c2712e65deb65a5b
SHA512

0e5c1e3055071de09031021688492133f9928462a5a5cc8d8793ee3b542e774399dbac6dd8c81eaf307ca8ce30260537d8eb7bceb824fab29a75d797ac131864
SSDEEP

6144:v7rc6Wk6SYnaKOai5uWLwrd0jSjc0vNPqBVzLFW5WUPV2m7hzS7583Tg7A+++ncE:vXcFk6SYna2Frd0jSjcc9SnmBZX0TMh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ISmm7Q94U.dll

Files

ISmm7Q94U.dll
.dll regsvr32 windows:4 windows x64 arch:x64

733e4ccf9ef47c6e471d93270b5eb898

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

AddAtomA
CloseHandle
CreateMutexA
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
FindAtomA
GetAtomNameA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
ReleaseMutex
ReleaseSemaphore
RtlAddFunctionTable
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_fdopen
_fileno
_read
_write
__dllonexit
__doserrno
__iob_func
__mb_cur_max
__pioinfo
_amsg_exit
_errno
_filelengthi64
_fileno
_fstat64
_initterm
_lock
_lseeki64
_onexit
_strnicmp
_unlock
_vsnprintf
_write
abort
atoi
calloc
fclose
fflush
fgetpos
fopen
fputc
fputs
fread
free
fsetpos
fwrite
getc
getwc
isspace
iswctype
localeconv
malloc
memchr
memcpy
memmove
memset
printf
putc
putwc
realloc
setlocale
setvbuf
signal
sprintf
strchr
strcmp
strcoll
strcpy
strerror
strftime
strlen
strncmp
strxfrm
towlower
towupper
ungetc
ungetwc
vfprintf
wcscoll
wcsftime
wcslen
wcsxfrm

user32

ShowWindow

ole32

CoLoadLibrary

Exports

Exports

ConsoleInput
DllRegisterServer
_ZN8DllClassC1Ev
_ZN8DllClassC2Ev
_ZN8DllClassD0Ev
_ZN8DllClassD1Ev
_ZN8DllClassD2Ev
_ZTV8DllClass

Sections

.text
Size: 531KB - Virtual size: 531KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 263B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

733e4ccf9ef47c6e471d93270b5eb898

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

Exports

Exports

Sections

.text Size: 531KB - Virtual size: 531KB

.data Size: 52KB - Virtual size: 52KB

.rdata Size: 17KB - Virtual size: 17KB

.pdata Size: 26KB - Virtual size: 26KB

.xdata Size: 25KB - Virtual size: 24KB

.bss Size: - Virtual size: 5KB

.edata Size: 512B - Virtual size: 263B

.idata Size: 4KB - Virtual size: 4KB

.CRT Size: 512B - Virtual size: 88B

.tls Size: 512B - Virtual size: 72B

.rsrc Size: 158KB - Virtual size: 158KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 531KB - Virtual size: 531KB

.data
Size: 52KB - Virtual size: 52KB

.rdata
Size: 17KB - Virtual size: 17KB

.pdata
Size: 26KB - Virtual size: 26KB

.xdata
Size: 25KB - Virtual size: 24KB

.bss
Size: - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 263B

.idata
Size: 4KB - Virtual size: 4KB

.CRT
Size: 512B - Virtual size: 88B

.tls
Size: 512B - Virtual size: 72B

.rsrc
Size: 158KB - Virtual size: 158KB

.reloc
Size: 3KB - Virtual size: 3KB