Hidden Import DLL (HID) v1.0

Hidden Import DLL(HID) is a tool that help malware anayzers in static analysis stage by scanning any Portable Execuation (PE) or dll file and get all hidden DLL imports, Even if the malware author used Techniques to hide DLL imports during runtime the HID tool can catch them all, HID also automaticlly save a copy from every result as Text file

Real Example on Ransomware

This is a real example on LockBit Ransomware:

We can Notice that 0 import from Kernel32.dll but let's look deeper by using HID:

There are +50 hidden imports from Kernel32.dll only

The md5 Hash of the sample : 69BEC32D50744293E85606A5E8F80425

Note

Make sure Python 3.9 or above installed to avoid any problems

Contact With Author

Twitter: https://twitter.com/TechMOD1

LinkedIn: https://www.linkedin.com/in/mohammedalattas1/

Name		Name	Last commit message	Last commit date
Latest commit History 12 Commits
HID.exe		HID.exe
README.md		README.md
SourceCode.py		SourceCode.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

HID.exe

HID.exe

README.md

README.md

SourceCode.py

SourceCode.py

Repository files navigation

Hidden Import DLL (HID) v1.0

Real Example on Ransomware

Note

Contact With Author

About

Releases

Packages

Languages

MODWare/Hidden_Import_DLL

Folders and files

Latest commit

History

Repository files navigation

Hidden Import DLL (HID) v1.0

Real Example on Ransomware

Note

Contact With Author

About

Resources

Stars

Watchers

Forks

Languages