WSULD7[.]Cpl | Triage

Sharing

Copy URL Twitter E-mail

General

Target

WSULD7.Cpl
Size

1.2MB
MD5

556dd15b981ceb8cf882df62d4766b14
SHA1

dfb2d73f10e646f885f031e330ce3f493929ce26
SHA256

7d9e506bb3b53ab296fa20acb55f879284250c1c50ffabda43598e067c0f0055
SHA512

464c30168d39a97717c4ec75c9f63274162ec1ca2ad465d239ce113615a404bd8c36445b56a138c12864f85afdbc06d14a6a204ecfe0b584c4432168bcd9b8f1
SSDEEP

24576:dl1mBnZHL2m2CKBR2oqBuon08qM771JKzFGGM+fm8i:dl1YnZHym2sodo0tMFIfmL

Score

N/A

Malware Config

Signatures

Files

WSULD7.Cpl
.dll windows x86

e61892f2e3a5d99c1b734638ef9a2dd3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW

advapi32

EnumServicesStatusExW
GetServiceDisplayNameW
GetWindowsAccountDomainSid
GetEventLogInformation
GetSidIdentifierAuthority
GetServiceDisplayNameA
GetSecurityDescriptorOwner
GetSecurityDescriptorGroup
IsWellKnownSid
GetOldestEventLogRecord

ole32

GetConvertStg

user32

GetMenuStringW
LoadIconA
FillRect
LoadKeyboardLayoutW
GetRawInputDeviceInfoW
DestroyCursor
GetSysColor
FreeDDElParam
GetWindowWord
DefFrameProcA
DrawTextExW
GetScrollBarInfo
GetWindowInfo
GetTabbedTextExtentA
GetDlgItemInt
DrawTextA
FindWindowW
GetMenuItemInfoA
GetMenuBarInfo
GetUserObjectInformationW
LoadKeyboardLayoutA
GetMenuCheckMarkDimensions
GetWindowThreadProcessId
GetClipboardSequenceNumber
GetKeyboardState
EqualRect
GetProcessWindowStation

msvcrt

strcoll
ungetwc

winspool.drv

GetPrintProcessorDirectoryW
GetPrinterDriverDirectoryW
DeletePrinterDriverW
GetPrinterDriverA
FindFirstPrinterChangeNotification

secur32

GetComputerObjectNameW

gdi32

GetTextCharset
GetPixel
DescribePixelFormat
FloodFill
FlattenPath
GetTextAlign
GetLayout
GetTextMetricsA
GetTextColor
GetFontData

oleaut32

GetErrorInfo

kernel32

GetSystemInfo
GetComputerNameExW
GetSystemDirectoryA
GetVolumePathNamesForVolumeNameW
lstrcmpA
FlushConsoleInputBuffer
GetCPInfo
FindClose
GetProcessId
LockResource
GetSystemWindowsDirectoryW
FlushFileBuffers
GetComputerNameW
WriteProfileStringW
GetUserDefaultUILanguage
FillConsoleOutputCharacterA
GetLargestConsoleWindowSize
WriteProcessMemory
GetCurrencyFormatA
GetBinaryTypeA
GetModuleFileNameA
GetModuleHandleA
FindResourceA
GetThreadPriority
GetTimeZoneInformation
GetConsoleMode
GetProcAddress
GetStringTypeExW
FoldStringW
LocalAlloc
ExitThread

comdlg32

GetFileTitleW

Sections

.text
Size: 420KB - Virtual size: 419KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 632KB - Virtual size: 630KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e61892f2e3a5d99c1b734638ef9a2dd3

Headers

DLL Characteristics

File Characteristics

Imports

version

advapi32

ole32

user32

msvcrt

winspool.drv

secur32

gdi32

oleaut32

kernel32

comdlg32

Sections

.text Size: 420KB - Virtual size: 419KB

.rdata Size: 632KB - Virtual size: 630KB

.data Size: 140KB - Virtual size: 142KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 60KB - Virtual size: 59KB

.text
Size: 420KB - Virtual size: 419KB

.rdata
Size: 632KB - Virtual size: 630KB

.data
Size: 140KB - Virtual size: 142KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 60KB - Virtual size: 59KB