09f06c8c31699ee53bea5f10b9006d46724059044c75febbb340f8fe30721e68

Sharing

Copy URL Twitter E-mail

General

Target

09f06c8c31699ee53bea5f10b9006d46724059044c75febbb340f8fe30721e68
Size

244KB
MD5

46641563152676505a5a6b6a7cf44e9b
SHA1

fa8180fba5b8eacdafd8162e3d177616700c5dd6
SHA256

09f06c8c31699ee53bea5f10b9006d46724059044c75febbb340f8fe30721e68
SHA512

cc39a0b07e80ee7e59a1ac82918575819b6de765380bdcd1f419b9e659ce8acdf90a1558b2388de64caf4ea3d3177160ed4cd488503acf2304dddbfd27e6c3a1
SSDEEP

6144:E7OvoiBHIc6sK9SZXVnb1lICtETkCJT7SRv:ouH1N7Zlb12CtmZJC

Score

N/A

Malware Config

Signatures

Files

09f06c8c31699ee53bea5f10b9006d46724059044c75febbb340f8fe30721e68
.dll windows x86

d50298a428fa87db36fad6d595bf569b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

PropertySheetA
CreatePropertySheetPageA

kernel32

FileTimeToSystemTime
FindFirstFileA
FindResourceA
FindResourceExA
FlushInstructionCache
FreeEnvironmentStringsA
FreeLibrary
FreeResource
GetACP
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileSize
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemDirectoryA
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetThreadLocale
GetTickCount
GetTimeFormatA
GetVersion
GetVersionExA
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
ExitProcess
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
IsDBCSLeadByte
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalAlloc
LocalFree
LocalLock
LocalUnlock
LockResource
MapViewOfFile
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadFile
ReleaseMutex
ResetEvent
ResumeThread
RtlUnwind
SetEndOfFile
SetEvent
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WideCharToMultiByte
WriteFile
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpynA
lstrlenW
EnterCriticalSection
DuplicateHandle
DeleteFileA
DeleteCriticalSection
CreateThread
CreateMutexA
CreateFileMappingA
CreateFileA
CreateEventA
CloseHandle
InitializeCriticalSection

oleaut32

SafeArrayUnlock
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysReAllocString
SysStringByteLen
SysStringLen
VarUI4FromStr
VariantClear
VariantCopy
VariantCopyInd
VariantInit
SafeArrayUnaccessData
SafeArrayPutElement
SafeArrayLock
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetElement
SafeArrayCreateVector
SafeArrayAccessData
OleTranslateColor
OleIconToCursor

advapi32

RegCloseKey
RegSetValueExA
RegQueryValueA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyA
RegOpenKeyExA
RegQueryInfoKeyA

ole32

CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance

Exports

Exports

BindSurfaceToArray
D3D10ResourceGetMappedPointer
D3D9ResourceSetMapFlags
EncodeJFIF
EnumDriveModeRelease
EnumImageItemRelease
GraphicsD3D11RegisterResource
Memcpy2DFromArray

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d50298a428fa87db36fad6d595bf569b

Headers

File Characteristics

Imports

comctl32

kernel32

oleaut32

advapi32

ole32

Exports

Exports

Sections

.text Size: 160KB - Virtual size: 160KB

.data Size: 72KB - Virtual size: 120KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 160KB - Virtual size: 160KB

.data
Size: 72KB - Virtual size: 120KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB