632989c303fc5[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

632989c303fc5.dll
Size

504KB
MD5

ae47d160da6f5b40bcc9209622fe9b15
SHA1

dbaa07faa8c495147321549cbf99972ea36157cc
SHA256

28b05fe6563a4c62d47fe43d3c1f61eb742afd42b5a551c6846233092fae11e0
SHA512

3a0a63ed44a20c78dff8b393dce4578f3c52e45a93057ebc81efd33322e2809aeb83a197a04885af91c01e3dbdb2eb8409109c049002d08a01f54f05e776a513
SSDEEP

6144:jEZjSPANWjOuuPdo4JrNOiduRVBVSjcdZ0nPjlv7oPSKo7490BszloJ5ICZO/+:udlJOkuRVfa48LljoPSKoE90Co5dL

Score

N/A

Malware Config

Signatures

Files

632989c303fc5.dll
.dll windows x86

f6f50e027a4c4acd49d92eaf66f7a1de

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscms

GetStandardColorSpaceProfileW

gdi32

GetPixelFormat
FillPath
GetStockObject
GetMetaFileA
GetTextColor
GetPolyFillMode
GetTextExtentExPointI
GetTextExtentExPointW
GetCharacterPlacementW
GetFontUnicodeRanges
GdiSetBatchLimit
GetPath
GetDIBColorTable
DeleteColorSpace

secur32

DecryptMessage
FreeContextBuffer

wininet

GetUrlCacheEntryInfoExA

kernel32

GetConsoleTitleA
GetCurrentDirectoryA
EnumSystemLocalesW
EnumSystemGeoID
GetProfileStringW
GetVolumePathNamesForVolumeNameW
DefineDosDeviceA
WriteProfileStringW
EnumTimeFormatsA
GetTapeStatus
DeleteTimerQueueTimer
GetSystemTime
VirtualQueryEx
GetUserDefaultLangID
VirtualFree
GetTapePosition
GetStringTypeW
FindFirstFileW
GlobalLock
FindResourceExA
GetComputerNameW
EnumResourceNamesW
GetTimeFormatA
GetSystemTimeAsFileTime
GetConsoleMode
lstrlenA
GetExitCodeProcess
IsValidCodePage
GetSystemDefaultLangID
GetCurrentThreadId
GetModuleFileNameW
GetBinaryTypeW
ExitThread
lstrcmpiW
VirtualFreeEx
VirtualProtectEx
GetTempPathA
GetSystemPowerStatus
GetFileAttributesExW

ws2_32

shutdown

winspool.drv

DeletePrinter
FindFirstPrinterChangeNotification

msvcrt

memset
_time64
strtol
strtoul
fputws
strcspn
strspn
tolower
strcmp

comdlg32

GetSaveFileNameA
GetSaveFileNameW

user32

DrawIcon
FindWindowW
GetKeyNameTextW
InsertMenuA
FlashWindow
LoadKeyboardLayoutA
LoadIconA
GetUserObjectInformationW
GetWindowInfo
GetClipboardSequenceNumber
ModifyMenuA
GetUpdateRect
GetClassInfoA
GetClassInfoExA
GetWindowRect
GetWindowTextW
GetMenuStringW
GetProcessDefaultLayout
GetPropW
DefMDIChildProcW
DefWindowProcA
LoadMenuW
LoadCursorW
EnumWindowStationsW
GetWindowTextA

oleaut32

GetErrorInfo

version

GetFileVersionInfoSizeA

advapi32

IsValidAcl
GetServiceDisplayNameW
RegOpenKeyA
GetOldestEventLogRecord
GetFileSecurityW
LookupPrivilegeNameW
GetServiceKeyNameA
GetSidIdentifierAuthority
LookupAccountSidW
GetLengthSid

shell32

ExtractAssociatedIconExW
ExtractAssociatedIconA

powrprof

IsPwrHibernateAllowed

urlmon

IsValidURL

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.erloc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6f50e027a4c4acd49d92eaf66f7a1de

Headers

DLL Characteristics

File Characteristics

Imports

mscms

gdi32

secur32

wininet

kernel32

ws2_32

winspool.drv

msvcrt

comdlg32

user32

oleaut32

version

advapi32

shell32

powrprof

urlmon

Sections

.text Size: 92KB - Virtual size: 89KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 16KB - Virtual size: 23KB

.idata Size: 8KB - Virtual size: 5KB

.erloc Size: 108KB - Virtual size: 107KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 92KB - Virtual size: 89KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 16KB - Virtual size: 23KB

.idata
Size: 8KB - Virtual size: 5KB

.erloc
Size: 108KB - Virtual size: 107KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 7KB