DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Register
Uninstall
Static task
static1
Behavioral task
behavioral1
Sample
ef5ca9aa47b868f8e910c4272ac6a9e205379040c0e6c63e6bd3f07955d34496.dll
Resource
win7-20220901-en
Target
ef5ca9aa47b868f8e910c4272ac6a9e205379040c0e6c63e6bd3f07955d34496
Size
135KB
MD5
030bbe15017be0a1fb1595f9f20c1482
SHA1
9d6c2918dd6b5c1ca15e5fb29777cc8f633540c5
SHA256
ef5ca9aa47b868f8e910c4272ac6a9e205379040c0e6c63e6bd3f07955d34496
SHA512
4f066c327acea64be3639fe9642bd0033b20163c464988978efe822b8858790e555d5c186b00a967e1137dcf69f9497f2487ef2e20e27bf9a05ac717d7a84f36
SSDEEP
3072:Se6UuUtFT90gtpqp8e60ff7Go1Yi3eAaJRFAFB6TnvO/T9gJM:yv09nc8Z0b/GMJSWF0TngUM
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
SHDeleteKeyA
SHDeleteValueA
PathStripToRootA
PathAppendA
PathFileExistsA
PathIsUNCA
SHSetValueA
PathFindFileNameA
PathFindExtensionA
SHGetValueA
PathRemoveExtensionA
PathRemoveFileSpecA
PathRemoveBackslashA
PathRemoveBlanksA
DeleteCriticalSection
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
UnmapViewOfFile
LeaveCriticalSection
EnterCriticalSection
CreateFileA
lstrcpynA
GetVersionExA
GetCurrentThreadId
GetTickCount
CreateMutexA
FindClose
FindNextFileA
FindFirstFileA
GetLastError
lstrcmpA
lstrlenW
WideCharToMultiByte
InitializeCriticalSection
MultiByteToWideChar
FreeLibrary
WaitForSingleObject
TerminateThread
GetModuleFileNameA
VirtualQuery
lstrcmpiA
VirtualProtect
GetCurrentProcess
WriteProcessMemory
GetCurrentProcessId
CreateToolhelp32Snapshot
Module32First
Module32Next
CloseHandle
GetModuleHandleA
InterlockedDecrement
GetModuleFileNameW
LoadLibraryW
GetModuleHandleW
OutputDebugStringA
GetFileAttributesW
LoadLibraryA
SetLastError
SetThreadPriority
Sleep
CreateThread
GetSystemInfo
GetProcAddress
GetVersion
GlobalSize
lstrcatA
GetSystemDirectoryA
lstrcpyA
lstrlenA
OpenMutexA
LocalFree
IsBadStringPtrW
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
DeviceIoControl
GetPrivateProfileStringA
MoveFileA
IsBadStringPtrA
GlobalLock
GetWindowsDirectoryA
MoveFileExA
WriteFile
DeleteFileA
GetTempFileNameA
GetTempPathA
InterlockedIncrement
InterlockedExchange
CreateProcessA
GetShortPathNameA
CopyFileA
WritePrivateProfileStructA
WritePrivateProfileStringA
GetPrivateProfileStructA
GetPrivateProfileIntA
EnumChildWindows
RegisterWindowMessageA
GetClassNameA
SendMessageA
SetWindowTextA
IsWindow
GetParent
EnumWindows
MessageBoxA
InvalidateRect
ReleaseDC
DrawTextA
GetWindowTextA
FillRect
GetSysColor
GetDC
GetFocus
GetKeyState
SetWindowLongW
GetComboBoxInfo
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
WindowFromPoint
IsWindowVisible
GetWindowThreadProcessId
RemovePropA
DialogBoxParamA
GetWindow
GetWindowRect
SystemParametersInfoA
GetClientRect
MapWindowPoints
SetWindowPos
GetDlgItemTextA
EndDialog
GetWindowTextLengthA
GetDlgItem
EnableWindow
LoadStringA
SetWindowLongA
SendMessageTimeoutA
GetPropA
DefWindowProcA
CallWindowProcA
FindWindowExA
GetWindowLongA
SetPropA
RegDeleteValueA
ControlService
OpenServiceA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegCreateKeyA
RegSetValueExA
RegCloseKey
RegOpenKeyA
CloseServiceHandle
OpenSCManagerA
DeleteService
RevokeDragDrop
RegisterDragDrop
CoCreateGuid
ReleaseStgMedium
CoUninitialize
CoTaskMemFree
StringFromCLSID
CoInitialize
SysFreeString
VariantClear
SysAllocString
ImageDirectoryEntryToData
fopen
_mbclen
_ismbcdigit
malloc
atoi
_vsnprintf
_CxxThrowException
fwrite
rand
strrchr
_ltoa
srand
time
fread
fseek
??1type_info@@UAE@XZ
fputs
strstr
rewind
wcslen
_mbstok
__dllonexit
_onexit
_initterm
_adjust_fdiv
fgets
fclose
bsearch
_mbsnbicmp
_mbschr
strncpy
free
_snprintf
realloc
_mbsrchr
_mbslwr
_mbsstr
_mbscmp
_except_handler3
sprintf
_mbsnbcpy
_purecall
wcscpy
_mbsicmp
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler
_stricmp
_wcsicmp
_strlwr
ftell
IsValidURL
URLDownloadToFileA
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA
gethostbyname
inet_ntoa
inet_addr
WSAGetLastError
socket
WSAStartup
WSACleanup
closesocket
recv
setsockopt
send
htons
connect
SetBkMode
GetStockObject
DeleteObject
CreateSolidBrush
SetTextColor
GetTextExtentPointA
SetPixel
LineTo
MoveToEx
CreatePen
SelectObject
SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHGetSpecialFolderPathA
DeleteUrlCacheEntry
InternetCrackUrlA
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Register
Uninstall
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ