3ae02fc1fdb653997eeb9303305f1ec35dbb87eb603b573bd94895f35542f1a8[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

3ae02fc1fdb653997eeb9303305f1ec35dbb87eb603b573bd94895f35542f1a8.dll
Size

168KB
MD5

0a0aae4b62caf33b4e75c1324bbb58d1
SHA1

364deb73b31b77824315963f95f1ecdf0684b600
SHA256

3ae02fc1fdb653997eeb9303305f1ec35dbb87eb603b573bd94895f35542f1a8
SHA512

e1aa2ccbbab36218ad54334adfc2071709c6d6a9b71154ba6276e9eac9958a08d4a2602985030448752d21d12dd49685121d1563d019aa2abde2636238ca359b
SSDEEP

3072:fx/ZjVzy/oAhj6S/5hFmB2qT+TElMMQlbfRdbup7QFDINuoE1I/t:fdBc/XhWS5b0QxffM5Nuhi/t

Score

N/A

Malware Config

Signatures

Files

3ae02fc1fdb653997eeb9303305f1ec35dbb87eb603b573bd94895f35542f1a8.dll
.dll windows x86

d377245cd72163459bc5069d2e0536a2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfW
MessageBoxW
wsprintfA

kernel32

WriteFile
GetComputerNameW
GetVolumeInformationW
GetWindowsDirectoryW
GetDriveTypeW
GetDiskFreeSpaceW
Sleep
ExitThread
GetLogicalDriveStringsW
lstrlenW
SetFileAttributesW
GetFileSizeEx
GetTickCount
SetFilePointerEx
MoveFileW
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
GetCurrentProcessId
ProcessIdToSessionId
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetStringTypeW
MultiByteToWideChar
ReadFile
HeapAlloc
HeapFree
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsSetValue
FreeLibrary
LoadLibraryExW
LCMapStringW
EnterCriticalSection
LeaveCriticalSection
IsValidCodePage
GetOEMCP
RtlUnwind
GetModuleHandleExW
WideCharToMultiByte
GetFileSize
CreateFileW
GetCommandLineW
SetLastError
SetErrorMode
ExitProcess
GetUserDefaultUILanguage
GetSystemDefaultLangID
GetUserDefaultLangID
GetFileAttributesW
GetLastError
CreateMutexW
WaitForMultipleObjects
IsWow64Process
CreateThread
GetCurrentProcess
CloseHandle
VirtualFree
VirtualAlloc
GetACP
GetCPInfo

advapi32

OpenSCManagerW
CryptExportKey
CryptDestroyKey
EnumServicesStatusW
OpenServiceW
CloseServiceHandle
ControlService
EnumDependentServicesW
QueryServiceStatusEx
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
GetUserNameW
CryptDecrypt
CryptEncrypt
CryptImportKey
CryptGenRandom
CryptAcquireContextW
CryptGenKey
CryptReleaseContext

shell32

SHGetFolderPathW

netapi32

DsRoleGetPrimaryDomainInformation
DsRoleFreeMemory

ole32

CoInitializeSecurity
CoSetProxyBlanket
CoUninitialize
CoInitializeEx
CoCreateInstance

crypt32

CryptBinaryToStringA
CryptBinaryToStringW

ntdll

RtlInitUnicodeString
RtlEqualUnicodeString
NtClose
NtAdjustPrivilegesToken
NtQuerySystemInformation
NtOpenThreadTokenEx
NtTerminateProcess
NtOpenProcess
NtOpenThread
RtlAdjustPrivilege
NtImpersonateThread

mpr

WNetCancelConnectionW
WNetAddConnectionW
WNetEnumResourceW
WNetCloseEnum
WNetOpenEnumW

secur32

LsaEnumerateLogonSessions
LsaFreeReturnBuffer
LsaGetLogonSessionData

shlwapi

StrStrIW

wininet

InternetCloseHandle
InternetReadFile
HttpOpenRequestW
InternetConnectW
HttpQueryInfoA
InternetOpenW
HttpSendRequestW
InternetCrackUrlW

oleaut32

VariantClear
VariantInit

Sections

.text
Size: 108KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 4KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d377245cd72163459bc5069d2e0536a2

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

advapi32

shell32

netapi32

ole32

crypt32

ntdll

mpr

secur32

shlwapi

wininet

oleaut32

Sections

.text Size: 108KB - Virtual size: 1.8MB

.rdata Size: 24KB - Virtual size: 1.9MB

.data Size: 16KB - Virtual size: 1.9MB

.gfids Size: 4KB - Virtual size: 1.9MB

.reloc Size: 1.9MB - Virtual size: 1.9MB

.text
Size: 108KB - Virtual size: 1.8MB

.rdata
Size: 24KB - Virtual size: 1.9MB

.data
Size: 16KB - Virtual size: 1.9MB

.gfids
Size: 4KB - Virtual size: 1.9MB

.reloc
Size: 1.9MB - Virtual size: 1.9MB