ihtba4[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ihtba4.dll
Size

1.7MB
MD5

6470180815d2a563e06c7d0f630f0e1b
SHA1

8f9a1b33c895c81efb2ba9009730f9da64cba51d
SHA256

77c3521168981168385e4621deb8dee5affc42abeefdbf950f61b6711b188575
SHA512

9e93979deb7398eee0c5e5307a902aedc6b2fdee7a2a8cce95652ef6d8438dff97be681537a22f7775cf5d60fcfdb44fc64121d0e22930c3d92c9c81f9b02bc7
SSDEEP

24576:As83PCDLjarQoR3oMqcXe6bJhFGo3hHTqw2GkWQv06xvxEi0s:AsMPe3aRYMq96lhFbhzqNGkWw06Vq/

Score

N/A

Malware Config

Signatures

Files

ihtba4.dll
.dll windows x86

fcc50525000ba16e6f18a239cd64b336

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextColor
GetROP2
GdiGetBatchLimit
GetClipBox
GetCharWidthW
GetBrushOrgEx
DeleteEnhMetaFile
ModifyWorldTransform
GetTextCharacterExtra

msvcrt

strcoll
vfwprintf

comdlg32

GetSaveFileNameA

ole32

MkParseDisplayName

advapi32

LookupAccountSidW
EqualSid
LogonUserA

user32

GetUserObjectSecurity
GetQueueStatus
FindWindowExW
DefMDIChildProcA
GetLastInputInfo
GetKeyboardLayoutNameA
DrawTextA
LoadImageA
GetThreadDesktop
DestroyCaret
LoadCursorA
GetTabbedTextExtentW
GetRawInputDeviceList
DestroyAcceleratorTable
DialogBoxParamW

oleaut32

LoadTypeLibEx

kernel32

GetSystemTimeAdjustment
LockResource
GetFileType
lstrcatA
GetProfileStringW
GetSystemTime
FlushInstructionCache
GetTimeFormatA
FindFirstVolumeW
GetTempPathA
LocalAlloc
EnumResourceNamesW
GetCommModemStatus
FormatMessageW
GetLastError
GetModuleHandleA
GetModuleFileNameA
GetBinaryTypeA
GetDiskFreeSpaceExW

Sections

.text
Size: 384KB - Virtual size: 383KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fcc50525000ba16e6f18a239cd64b336

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

msvcrt

comdlg32

ole32

advapi32

user32

oleaut32

kernel32

Sections

.text Size: 384KB - Virtual size: 383KB

.rdata Size: 1.1MB - Virtual size: 1.1MB

.data Size: 168KB - Virtual size: 165KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 48KB - Virtual size: 46KB

.text
Size: 384KB - Virtual size: 383KB

.rdata
Size: 1.1MB - Virtual size: 1.1MB

.data
Size: 168KB - Virtual size: 165KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 48KB - Virtual size: 46KB