ddd385a03c118320fbb685a6721e11802d0c5051dba3ebec7d9009c51e0cf2b8

Sharing

Copy URL

Twitter E-mail

General

Target

ddd385a03c118320fbb685a6721e11802d0c5051dba3ebec7d9009c51e0cf2b8
Size

608KB
MD5

0c311ee344fe160915960e816b4771a0
SHA1

0e273cbc7016ad0c9264918cd6ef0c369effb57a
SHA256

ddd385a03c118320fbb685a6721e11802d0c5051dba3ebec7d9009c51e0cf2b8
SHA512

fb78264a74d50f38023c370f2b8d401e6b7465ca630c5fe48d541ec86656d1827174eca4ec25fa65c54c64e480f520a35e96b2a546a2296a707c64435f1f619f
SSDEEP

6144:yg12AzW5HsiScvtNybiR8g0ISTFCRVe9/JE+++sKS1JGWWsca65eu9K2zqc4CWAZ:y82AK5HOEksJ1YW7DwzqyQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddd385a03c118320fbb685a6721e11802d0c5051dba3ebec7d9009c51e0cf2b8

Files

ddd385a03c118320fbb685a6721e11802d0c5051dba3ebec7d9009c51e0cf2b8
.dll windows:5 windows x86 arch:x86

33296e9aed55b8de95081e21cf80eb98

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

RegRestoreKeyA

kernel32

GetConsoleCP
GetExitCodeProcess
GetCommState
GetModuleHandleA

user32

ShowOwnedPopups
SetFocus

wininet

GetUrlCacheEntryInfoExA

Exports

Exports

BrandingFormatString
BrandingLoadBitmap
BrandingLoadCursor
BrandingLoadIcon
BrandingLoadImage
BrandingLoadString
GetHinstanceByNameSpace

Sections

.text
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DAta
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt0
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 4KB - Virtual size: 503B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 4KB - Virtual size: 276B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

33296e9aed55b8de95081e21cf80eb98

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

user32

wininet

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 18KB

.rdata Size: 332KB - Virtual size: 331KB

.DAta Size: 16KB - Virtual size: 15KB

.crt Size: 48KB - Virtual size: 45KB

.crt0 Size: 108KB - Virtual size: 105KB

.rsrc Size: 64KB - Virtual size: 60KB

.reloc Size: 8KB - Virtual size: 4KB

Size: 4KB - Virtual size: 503B

Size: 4KB - Virtual size: 276B

.text
Size: 20KB - Virtual size: 18KB

.rdata
Size: 332KB - Virtual size: 331KB

.DAta
Size: 16KB - Virtual size: 15KB

.crt
Size: 48KB - Virtual size: 45KB

.crt0
Size: 108KB - Virtual size: 105KB

.rsrc
Size: 64KB - Virtual size: 60KB

.reloc
Size: 8KB - Virtual size: 4KB