General

Malware Config

Signatures

Files

• chrome.dll

  .dll windows x86

  15d0b563bda8248b1bc2c80e6e502bc6

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  SendMessageA

  RegisterClassA

  LoadIconA

  LoadCursorA

  GetWindowThreadProcessId

  ShowWindow

  TranslateMessage

  UpdateWindow

  wsprintfA

  GetMessageA

  GetClassNameA

  DispatchMessageA

  CreateWindowExA

  DefWindowProcA

  GetWindowTextA

  kernel32

  LocalFree

  SetEvent

  SetFilePointer

  OpenProcess

  RemoveDirectoryA

  GetTempPathA

  WriteFile

  WaitForSingleObject

  VirtualFree

  VirtualAlloc

  SystemTimeToFileTime

  CloseHandle

  CreateDirectoryA

  CreateEventA

  CreateFileA

  CreateThread

  DeleteFileA

  ExitThread

  FileTimeToSystemTime

  GetCommandLineW

  GetCurrentProcess

  GetCurrentProcessId

  GetEnvironmentVariableA

  GetLocalTime

  GetModuleHandleA

  LocalAlloc

  GetVolumeInformationA

  Sleep

  advapi32

  GetSidSubAuthority

  OpenProcessToken

  GetTokenInformation

  wsock32

  WSAStartup

  closesocket

  connect

  htons

  ioctlsocket

  recv

  select

  send

  setsockopt

  shutdown

  socket

  WSACleanup

  shell32

  CommandLineToArgvW

  ws2_32

  freeaddrinfo

  WSAIoctl

  getaddrinfo

  ole32

  CoUninitialize

  CoInitialize

  CoCreateInstance

  secur32

  GetUserNameExA

  GetUserNameExW

  psapi

  GetModuleFileNameExA

  Exports

  Exports

  rundll

  Sections

  .text

  Size: 8KB - Virtual size: 8KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 2KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1024B - Virtual size: 592B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .reloc

  Size: 512B - Virtual size: 356B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ