7cf0c6b4eecf96bcd52419132983de71050ec49bf32f841915aa8d2b5281689d

Sharing

Copy URL Twitter E-mail

General

Target

7cf0c6b4eecf96bcd52419132983de71050ec49bf32f841915aa8d2b5281689d
Size

254KB
MD5

39e883170eec7017ed2709ca4ee10c40
SHA1

cafc90bd66f0f4c28787220590885427af607858
SHA256

7cf0c6b4eecf96bcd52419132983de71050ec49bf32f841915aa8d2b5281689d
SHA512

8ffdbbb015c432d3e5223294a278b39e95d3844eb86439837c2b0a88218add5df13cdfaae50769897532b0640959bceec0afbd2c99a16252aa02ff094ad1221d
SSDEEP

6144:/H5+V4XDmHadllzQm0ushtOjd84FuXq/4XhWepAzaJ:/H5+VcmHc90uG4jTirYepAy

Score

N/A

Malware Config

Signatures

Files

7cf0c6b4eecf96bcd52419132983de71050ec49bf32f841915aa8d2b5281689d
.dll windows x86

257887c98d45b50ed5f68da984e99acb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetImageAttributesColorMatrix

kernel32

SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocaleInfoW
InitializeCriticalSectionAndSpinCount
LoadLibraryA
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
HeapReAlloc
VirtualAlloc
VirtualFree
HeapDestroy
HeapCreate
GetModuleFileNameA
GetStdHandle
WriteFile
WriteConsoleA
lstrcpynA
OutputDebugStringA
GetLocalTime
WritePrivateProfileStringA
GetCurrentDirectoryA
GetPrivateProfileStringA
WideCharToMultiByte
MultiByteToWideChar
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetProcAddress
GetModuleHandleW
HeapAlloc
GetCPInfo
LCMapStringW
LCMapStringA
RtlUnwind
RaiseException
GetCommandLineA
GetCurrentThreadId
SetLastError
HeapFree
GetLastError
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
Sleep
InterlockedDecrement
InterlockedIncrement
HeapSize
GetConsoleOutputCP
WriteConsoleW
CreateFileA
CloseHandle
FlushFileBuffers
ExitProcess
GetModuleHandleA

user32

RegisterClassExA
LoadCursorA
LoadIconA
DefWindowProcA
SetWindowLongA
SetWindowRgn
GetWindowPlacement
GetSystemMetrics
KillTimer
SetWindowTextA
SendMessageA
GetWindowLongA
ReleaseCapture
SetCapture
SetTimer

gdi32

GetStockObject
DeleteObject
CreateRoundRectRgn

Exports

Exports

_createPlazaExtObject@8
createPlazaExtObject

Sections

.text
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

257887c98d45b50ed5f68da984e99acb

Headers

DLL Characteristics

File Characteristics

Imports

gdiplus

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 130KB - Virtual size: 129KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 12KB - Virtual size: 11KB

.rmnet Size: 76KB - Virtual size: 76KB

.text
Size: 130KB - Virtual size: 129KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 12KB - Virtual size: 11KB

.rmnet
Size: 76KB - Virtual size: 76KB