fa57edfeba4f4a4d207ebffde89152d373de3b2c835ece3ca57c410e8292c1e8

Sharing

Copy URL

Twitter E-mail

General

Target

fa57edfeba4f4a4d207ebffde89152d373de3b2c835ece3ca57c410e8292c1e8
Size

328KB
MD5

f14251e51225dffe2929eaa5e5a5ab13
SHA1

5f510c8fc39980a24310cba53a5e5c5537af17d2
SHA256

fa57edfeba4f4a4d207ebffde89152d373de3b2c835ece3ca57c410e8292c1e8
SHA512

468b0d45333e491141568e85c1f847eed2bbd338008e2fd03315e0451368abb9950585687d82f2824099c62823d6442a199a5ddb1a92ec8e8f2d2be89924d8b4

Score

N/A

Malware Config

Signatures

Files

fa57edfeba4f4a4d207ebffde89152d373de3b2c835ece3ca57c410e8292c1e8
.dll windows x86

3de739ba739dd068b49ef2a9d848fcfa

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
SetStdHandle
GetLocaleInfoW
LoadLibraryA
InitializeCriticalSectionAndSpinCount
SetFilePointer
ReadFile
GetUserDefaultLCID
GetConsoleOutputCP
IsValidLocale
GetLocaleInfoA
IsValidCodePage
GetOEMCP
GetACP
VirtualAlloc
HeapReAlloc
HeapSize
CreateFileA
EnumSystemLocalesA
HeapAlloc
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetStringTypeW
GetStringTypeA
DeleteFileA
GetCurrentProcessId
CloseHandle
GetFileTime
VirtualProtect
GetModuleFileNameA
FindFirstChangeNotificationA
GetLocalTime
CopyFileA
GetStartupInfoA
GetSystemDirectoryA
CreateProcessA
Sleep
GetTickCount
GetTimeFormatA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
MultiByteToWideChar
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleFileNameW
GetCurrentThreadId
GetCommandLineA
GetCPInfo
HeapValidate
IsBadReadPtr
RaiseException
RtlUnwind
LCMapStringA
GetLastError
LCMapStringW
GetProcAddress
TlsGetValue
GetModuleHandleW
TlsAlloc
TlsSetValue
TlsFree
SetLastError
DebugBreak
GetStdHandle
WriteFile
OutputDebugStringA
WriteConsoleW
GetFileType
OutputDebugStringW
ExitProcess
LoadLibraryW
SetHandleCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
HeapFree
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetModuleHandleA

user32

RegisterHotKey
CallWindowProcA
SetClipboardData
LoadImageA
SystemParametersInfoA
ClientToScreen
DestroyWindow
GetMessageA
GetClassNameA
ScreenToClient
RegisterClassExA
SendDlgItemMessageA
GetKeyNameTextA
GetClassInfoExA
SetForegroundWindow
GetFocus
IsWindowEnabled
DrawIcon
SetFocus
GetWindowTextLengthA
SendMessageA
CheckMenuRadioItem
GetCursorPos
FrameRect
AppendMenuA
DispatchMessageA
CheckRadioButton

gdi32

LineTo
SetWindowExtEx
ExcludeClipRect
SetBkMode
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
MoveToEx

winspool.drv

ClosePrinter
OpenPrinterA
GetPrinterDataA
AddPrinterConnectionA
DocumentPropertiesA

comdlg32

GetOpenFileNameA
ChooseColorA
GetSaveFileNameA
GetFileTitleA
ChooseFontA
CommDlgExtendedError

comctl32

ImageList_LoadImageA
ImageList_Add
ord17
ImageList_Draw
ImageList_SetOverlayImage
DestroyPropertySheetPage
ord6
CreateToolbarEx

Sections

.text
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3de739ba739dd068b49ef2a9d848fcfa

Code Sign

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

comctl32

Sections

.text Size: 234KB - Virtual size: 233KB

.rdata Size: 63KB - Virtual size: 63KB

.data Size: 6KB - Virtual size: 60KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 234KB - Virtual size: 233KB

.rdata
Size: 63KB - Virtual size: 63KB

.data
Size: 6KB - Virtual size: 60KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 19KB - Virtual size: 18KB