13c8b4a6889725fd3087f071a60113d6f5067a703844516a973f3eeeed324e04

Sharing

Copy URL Twitter E-mail

General

Target

13c8b4a6889725fd3087f071a60113d6f5067a703844516a973f3eeeed324e04
Size

216KB
MD5

7360f13bb274f6535ac95277ba6722e0
SHA1

32d122e72689dc6d3f5226683464703999dd2e0d
SHA256

13c8b4a6889725fd3087f071a60113d6f5067a703844516a973f3eeeed324e04
SHA512

35cf0f992dc95b7611e912a9b0fe66c7e0ae7401515663fcd09afeb3544bb51e0f3d72a0ae04b445aa08e200ac8f539549339c2e7d780a003bb3943d2184b38d
SSDEEP

3072:iwFX5cwlKf+e5GtNUAxzolm9ngAUyzqI5Ck27XOTUOP3c3Hidu:i+X5bplxzemtqw0bO4O/Ol

Score

N/A

Malware Config

Signatures

Files

13c8b4a6889725fd3087f071a60113d6f5067a703844516a973f3eeeed324e04
.dll windows x86

62425d4438994c429e30114f96be2e84

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileAttributesW
GetLocalTime
AddAtomW
GetTimeFormatA
IsProcessorFeaturePresent

user32

FindWindowExW

comdlg32

ChooseColorW
GetSaveFileNameW
GetFileTitleA
LoadAlterBitmap
ReplaceTextW
PrintDlgA
ChooseFontA
PrintDlgW
ChooseFontW
PageSetupDlgW
FindTextW
GetOpenFileNameA
ChooseColorA
WantArrows
GetSaveFileNameA
PrintDlgExW
CommDlgExtendedError

ole32

CreateStreamOnHGlobal
CreateBindCtx
WriteClassStm
CoTestCancel
DllDebugObjectRPCHook
HMENU_UserFree
CoGetCurrentLogicalThreadId
OleMetafilePictFromIconAndLabel
OleTranslateAccelerator
CoCreateFreeThreadedMarshaler
OleGetClipboard
HMETAFILEPICT_UserUnmarshal
CoDeactivateObject
HkOleRegisterObject
HBITMAP_UserFree
PropVariantCopy
OleUninitialize
CoIsHandlerConnected
CreateILockBytesOnHGlobal
CoRegisterInitializeSpy
OleCreateLinkToFile
CoWaitForMultipleHandles
RegisterDragDrop
OleIsRunning
UtConvertDvtd16toDvtd32
CoTaskMemAlloc
CoCreateInstanceEx
CoFileTimeNow
CoGetObjectContext
OleLoadFromStream
RevokeDragDrop
CLSIDFromProgID
CoReactivateObject
CoRegisterChannelHook
StgSetTimes
MkParseDisplayName
CreateGenericComposite
CoFreeUnusedLibraries
SNB_UserFree
OleRegEnumVerbs

netapi32

NetGroupAdd
NetShareEnumSticky
NetUserSetGroups
NetDfsRemoveFtRootForced
NetDfsAddStdRoot
NetServerGetInfo
NetFileGetInfo
NetDfsAddFtRoot
NetLocalGroupAddMembers
NetWkstaTransportDel
NetStatisticsGet
NetServiceGetInfo
NetGetJoinableOUs
NetReplImportDirLock
NetConnectionEnum
NetAuditClear

avicap32

capGetDriverDescriptionA
capGetDriverDescriptionW
capCreateCaptureWindowW
videoThunk32

authz

AuthzFreeResourceManager
AuthzInitializeObjectAccessAuditEvent
AuthzAccessCheck
AuthzFreeAuditEvent
AuthzInitializeResourceManager
AuthzInitializeContextFromAuthzContext
AuthzInitializeContextFromToken
AuthziLogAuditEvent
AuthzFreeContext
AuthzAddSidsToContext

glmf32

glsGetOpcodeCount
glsUTF8toUCS1z
glsCopyStream
glsGetStreamCRC32
glsGetGLRCi
glsUTF8toUCS2z
glsHeaderubz
glsBeginCapture
glsNumub

inseng

PurgeDownloadDirectory
DownloadFile
GetICifRWFileFromFile
CheckForVersionConflict
CheckTrust

Exports

Exports

ComputerIsInstalledSetupThe
DForNotACMESupported
InBeOf
InfoOperationFlagsInstalled
KeyQueuingTo
OSOSInfoMessage
OpenedFalconFoundMSMQ
RegistryChecking
RegistryThis
ToInstallationACMEInfo

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 866B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62425d4438994c429e30114f96be2e84

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comdlg32

ole32

netapi32

avicap32

authz

glmf32

inseng

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 17KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 8KB - Virtual size: 134KB

.rsrc Size: 168KB - Virtual size: 167KB

.reloc Size: 4KB - Virtual size: 866B

.text
Size: 20KB - Virtual size: 17KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 8KB - Virtual size: 134KB

.rsrc
Size: 168KB - Virtual size: 167KB

.reloc
Size: 4KB - Virtual size: 866B