7471b99d820ebff8dfa6692cd700529154e3d5f98f1d036bf86e4d9bba4a1c4e

Sharing

Copy URL Twitter E-mail

General

Target

7471b99d820ebff8dfa6692cd700529154e3d5f98f1d036bf86e4d9bba4a1c4e
Size

648KB
MD5

f15e9c7d950ed869ae5c8f5fdcf05e33
SHA1

53fde2aeec41bd697cbe64eae52cd7fb10db9a2a
SHA256

7471b99d820ebff8dfa6692cd700529154e3d5f98f1d036bf86e4d9bba4a1c4e
SHA512

b8f034d956ee9062ac36e70d7b79231a134c9b09269e09c6b90e81800afd48ee7667bbbb44c9182bb60ae08d4076b04cfcac95aba440ae5b5210315e0a6df1fd
SSDEEP

12288:irpJbQUUtGYAieNV71H52JFR6SKaquybO3cyf0WNpCJZx1H5KC9tWW:ibUltGY06cJZvr

Score

N/A

Malware Config

Signatures

Files

7471b99d820ebff8dfa6692cd700529154e3d5f98f1d036bf86e4d9bba4a1c4e
.dll windows x86

829908c46d1cd4316277bae4bf1057b9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetFileAttributesW
TerminateProcess
GetSystemDirectoryW
GetWindowsDirectoryW
InterlockedIncrement
InterlockedDecrement
GetTickCount
OutputDebugStringW
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetStringTypeW
GetStringTypeA
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetFileType
SetHandleCount
GetConsoleMode
GetConsoleCP
GetStdHandle
HeapCreate
ExitProcess
Sleep
LCMapStringW
LCMapStringA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
IsValidCodePage
GetOEMCP
GetCPInfo
RtlUnwind
GetCommandLineA
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetThreadLocale
GetLocaleInfoA
GetACP
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
GetVersionExA
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetModuleHandleW
lstrlenW
MoveFileW
WritePrivateProfileStringW
WriteFile
LocalFree
SetFilePointer
LocalAlloc
FlushFileBuffers
CreateFileA
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
DeleteCriticalSection
GetLocalTime
GetCurrentProcess
LeaveCriticalSection
EnterCriticalSection
WideCharToMultiByte
RaiseException
FreeResource
GetPrivateProfileIntW
CreateFileW
GetFileSize
ReadFile
SetLastError
GetCurrentThreadId
CloseHandle
lstrlenA
GetLastError
GetVersionExW
InterlockedExchange
MultiByteToWideChar
FlushInstructionCache
GetModuleFileNameW
GetPrivateProfileStringW
DeleteFileW
FindClose
InitializeCriticalSection
FindResourceW
SizeofResource
LoadResource
GetProcAddress
CreateDirectoryW
FindResourceExW
LockResource
LoadLibraryW
FindFirstFileW
FreeLibrary
GetStartupInfoA

user32

MoveWindow
GetActiveWindow
ReleaseCapture
RegisterWindowMessageW
CopyRect
DefWindowProcW
GetDesktopWindow
IsWindowEnabled
GetParent
EnableWindow
GetWindow
GetWindowRect
GetWindowThreadProcessId
SetWindowLongW
GetWindowLongW
GetForegroundWindow
GetClientRect
MapWindowPoints
SystemParametersInfoW
IsWindow
SetWindowPos
AttachThreadInput
PostMessageW
SetForegroundWindow
LoadCursorW
SendMessageW
SetActiveWindow
CreateWindowExW
RegisterClassExW
GetDC
DestroyWindow
ReleaseDC
InvalidateRect
FindWindowW
GetClassInfoExW
InflateRect
LoadImageW
LoadBitmapW
TranslateMessage
GetMessageW
PostThreadMessageW
DispatchMessageW
PeekMessageW
GetMonitorInfoW
SetRect
PtInRect
OffsetRect
ShowWindow
GetCursorPos
EqualRect
EndPaint
GetDlgItem
BeginPaint
UpdateLayeredWindow
GetFocus
ScreenToClient
SetFocus
SetCursor
DrawIconEx
DrawFrameControl
IntersectRect
LoadIconW
IsWindowVisible
KillTimer
IsChild
DrawTextW
SetCapture
DestroyIcon
GetDlgCtrlID
IsDialogMessageW
SetRectEmpty
ClientToScreen
GetNextDlgTabItem
IsRectEmpty
MonitorFromWindow
SetTimer
UnregisterClassA
CallWindowProcW

gdi32

CreateRectRgnIndirect
MoveToEx
SetBkMode
OffsetRgn
RoundRect
RectInRegion
ExtSelectClipRgn
LineTo
GetViewportOrgEx
GetTextExtentPoint32W
TextOutW
GetCurrentObject
CombineRgn
CreateRoundRectRgn
SetViewportOrgEx
CreateFontIndirectW
BitBlt
GetObjectW
GetTextColor
GetStockObject
CreateDIBSection
CreateCompatibleBitmap
CreateRectRgn
CreatePen
Rectangle
RestoreDC
SetBkColor
StretchBlt
ExtTextOutW
DeleteDC
CreateBitmap
SelectObject
SetTextColor
CreateCompatibleDC
SaveDC
SelectClipRgn
DeleteObject
GetDeviceCaps
SetStretchBltMode
GetClipRgn

advapi32

RegCloseKey
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegEnumValueW
RegOpenKeyW
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

ShellExecuteW
SHGetSpecialFolderPathW

ole32

CoCreateInstance
CreateStreamOnHGlobal
CoInitialize
CoUninitialize

shlwapi

PathFindFileNameW
StrToIntW
PathRemoveFileSpecW
PathIsDirectoryW
PathAddBackslashW
StrToIntA
PathFileExistsW
PathAppendW

comctl32

_TrackMouseEvent

msimg32

AlphaBlend

gdiplus

GdipAddPathStringI
GdipAddPathPieI
GdipNewPrivateFontCollection
GdipFillRectangleI
GdipDrawString
GdipGetFontSize
GdipDrawRectangleI
GdipSetPenMode
GdipTranslateWorldTransform
GdipCreateFont
GdipSetTextRenderingHint
GdipSetPenEndCap
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipDeletePen
GdipGetFontCollectionFamilyList
GdipCreatePen1
GdipSetPenStartCap
GdipCreateLineBrushFromRectWithAngleI
GdipDeleteBrush
GdipSetPixelOffsetMode
GdipCreatePath
GdipGetFamily
GdipSetStringFormatTrimming
GdipFillPath
GdipCreateStringFormat
GdipSetStringFormatFlags
GdipSetPenDashStyle
GdipCloneFontFamily
GdipDrawLine
GdipSetCompositingQuality
GdipDrawLinesI
GdipSetStringFormatLineAlign
GdipSetClipPath
GdipDrawImageI
GdipMeasureString
GdipDeletePath
GdipClosePathFigure
GdipCreateFontFromLogfontW
GdipPrivateAddFontFile
GdipAddPathRectangleI
GdipSetSmoothingMode
GdipDeleteFont
GdipDeletePrivateFontCollection
GdipCreateSolidFill
GdipAddPathArcI
GdipFillRectangle
GdipResetWorldTransform
GdipDrawPath
GdipRotateWorldTransform
GdipCloneBrush
GdipGetImagePixelFormat
GdipGetImageWidth
GdipSetInterpolationMode
GdipDisposeImage
GdipCloneBitmapArea
GdipImageRotateFlip
GdipCreateImageAttributes
GdipLoadImageFromFile
GdipDrawImageRectRectI
GdiplusStartup
GdipGetImageHeight
GdipAlloc
GdipDrawImageRectI
GdipSetImageAttributesColorMatrix
GdipGetImageGraphicsContext
GdipCreateFromHDC
GdipDrawImageRectRect
GdipDisposeImageAttributes
GdipLoadImageFromStream
GdipCloneImage
GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipDrawImagePointsRectI
GdiplusShutdown
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipGraphicsClear
GdipDeleteFontFamily
GdipFree
GdipGetFontCollectionFamilyCount

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

Exports

Exports

DllGetClassObject

Sections

.text
Size: 472KB - Virtual size: 469KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

829908c46d1cd4316277bae4bf1057b9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

comctl32

msimg32

gdiplus

version

Exports

Exports

Sections

.text Size: 472KB - Virtual size: 469KB

.rdata Size: 84KB - Virtual size: 82KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 36KB - Virtual size: 33KB

.reloc Size: 40KB - Virtual size: 37KB

.text
Size: 472KB - Virtual size: 469KB

.rdata
Size: 84KB - Virtual size: 82KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 36KB - Virtual size: 33KB

.reloc
Size: 40KB - Virtual size: 37KB