939f3a7451c792fd30d4940bb4e44f78c3ce42522c0f4391efd2ec868bfea871

Sharing

Copy URL

Twitter E-mail

General

Target

939f3a7451c792fd30d4940bb4e44f78c3ce42522c0f4391efd2ec868bfea871
Size

326KB
MD5

25da777ea2fa0c4c4b8c63a56cb01260
SHA1

4825ecd5a271db4bb96be50a4a91ae57896b974e
SHA256

939f3a7451c792fd30d4940bb4e44f78c3ce42522c0f4391efd2ec868bfea871
SHA512

50eef55b472325345d9565b47941aa1879e43408352f6cd3c419e8f587f319cce8a54a155f133101f07a1236dc127e01f7409ac52d04b746721e8cd883b28b31

Score

N/A

Malware Config

Signatures

Files

939f3a7451c792fd30d4940bb4e44f78c3ce42522c0f4391efd2ec868bfea871
.dll windows x86

541e580aed0d62684853ffe1d6ce4062

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSectionAndSpinCount
CloseHandle
SetFilePointer
ReadFile
GetUserDefaultLCID
LoadLibraryA
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
CreateFileA
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
IsValidCodePage
LocalFree
GetCurrentThreadId
VirtualProtect
LocalAlloc
OpenMutexA
SetFileAttributesA
RemoveDirectoryA
CreateProcessA
CreateEventA
Sleep
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
MultiByteToWideChar
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleFileNameW
GetCommandLineA
GetCPInfo
HeapValidate
IsBadReadPtr
RaiseException
RtlUnwind
LCMapStringA
GetLastError
LCMapStringW
GetProcAddress
TlsGetValue
GetModuleHandleW
TlsAlloc
TlsSetValue
TlsFree
SetLastError
DebugBreak
GetStdHandle
WriteFile
OutputDebugStringA
WriteConsoleW
GetFileType
OutputDebugStringW
ExitProcess
LoadLibraryW
SetHandleCount
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
HeapFree
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
GetACP
GetOEMCP
GetModuleHandleA

user32

EndDeferWindowPos
ReleaseCapture
DefWindowProcA
EndDialog
ReleaseDC
GetMessageA
CloseClipboard
GetClassInfoExA
DrawTextA
LoadIconA
CallNextHookEx
WindowFromPoint
ExitWindowsEx
EnumWindows
InflateRect
OffsetRect
IntersectRect
GetWindowLongA

gdi32

GetDeviceCaps
SetAbortProc
SetRectRgn
CombineRgn
GetBkColor
CreatePatternBrush
EndDoc
AbortDoc
CreateSolidBrush

winspool.drv

ClosePrinter
OpenPrinterA
GetPrinterDataA
AddPrinterConnectionA
DocumentPropertiesA

comdlg32

CommDlgExtendedError
GetOpenFileNameA
ChooseColorA
GetSaveFileNameA
GetFileTitleA
ChooseFontA

comctl32

ImageList_GetBkColor
ImageList_GetImageCount
ImageList_GetIcon
ImageList_Create
ImageList_EndDrag
ImageList_GetDragImage

Sections

.text
Size: 233KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

541e580aed0d62684853ffe1d6ce4062

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

comctl32

Sections

.text Size: 233KB - Virtual size: 232KB

.rdata Size: 61KB - Virtual size: 61KB

.data Size: 6KB - Virtual size: 79KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 233KB - Virtual size: 232KB

.rdata
Size: 61KB - Virtual size: 61KB

.data
Size: 6KB - Virtual size: 79KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 19KB - Virtual size: 18KB