846243d03d17cd8d21a5114126166771651edd6305fa08ddc4761a42c7903ad6

Sharing

Copy URL Twitter E-mail

General

Target

846243d03d17cd8d21a5114126166771651edd6305fa08ddc4761a42c7903ad6
Size

84KB
MD5

51d0f3ff7a5f1d1737e623050c46048d
SHA1

4dc24cde7d89e4f85d422912b0779b4a06dde47b
SHA256

846243d03d17cd8d21a5114126166771651edd6305fa08ddc4761a42c7903ad6
SHA512

1cc8988f004e423d73c470cf1a35ef796af937cb8d1922efc0d870aff2905f018f429505462f5c5b14a0dc04dfb5564608259201e7390bd098c625b87b071bb1
SSDEEP

1536:2v/G5p6W6qMbbuQMVZMF6RjysVk7D6DYwPCTSuGQbvQIjsqmEXT7TvRNObNLYhh:2veJ6Xbqssq7D6DDfSGEbHOiH

Score

N/A

Malware Config

Signatures

Files

846243d03d17cd8d21a5114126166771651edd6305fa08ddc4761a42c7903ad6
.dll windows x86

b41d2cfaaf91e4031012e6baea7c11b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFileEx
ClearCommError
GetCurrencyFormatA
SetFileApisToOEM
FindFirstChangeNotificationW
CancelIo
OpenEventW
GetFullPathNameW
FindResourceA
GetOverlappedResult
IsBadStringPtrW
GetFileSizeEx
OpenSemaphoreA
DnsHostnameToComputerNameW
SleepEx
SystemTimeToFileTime
GetStartupInfoA
CopyFileExW
GetFullPathNameA
GetNumberFormatA
lstrcpyA
IsProcessorFeaturePresent
WriteConsoleInputA
SetLocalTime
DeleteTimerQueueEx
FindFirstFileExW
SetNamedPipeHandleState
Beep
GlobalFlags
WaitNamedPipeA
SetCurrentDirectoryW
SuspendThread
GetComputerNameExW
WaitForMultipleObjects
CreateFileMappingW
ReadConsoleInputW
ExpandEnvironmentStringsA
GetStringTypeA
PulseEvent
GetEnvironmentStrings
SetDefaultCommConfigW
GetStartupInfoW
UnregisterWaitEx
CompareStringW
GetWindowsDirectoryW
IsBadCodePtr
RaiseException
SetEndOfFile
HeapValidate
GetConsoleMode
IsBadReadPtr
GetCommandLineW
GetAtomNameA
FindFirstFileA
CreateThread
GlobalAddAtomW
GetVolumeInformationA
CreateFileA
MapViewOfFile
SetEvent
InterlockedCompareExchange
UnmapViewOfFile
GetModuleFileNameA
GetLastError
HeapAlloc
InterlockedIncrement
GetSystemTimeAsFileTime
LoadLibraryA
CloseHandle
GetProcessHeap
InitializeCriticalSectionAndSpinCount
SetLastError
GetProcAddress
OpenEventA
LeaveCriticalSection
ExitProcess
GetSystemInfo
InterlockedDecrement
WriteFile
GetModuleHandleA
GetComputerNameA
GetSystemDirectoryA
SetConsoleTitleA

user32

GetUpdateRgn
CharToOemW
MessageBoxIndirectW
GetQueueStatus
SetPropA
EndTask
EnumWindowStationsW
WindowFromDC
SetProcessDefaultLayout
FlashWindow
SendNotifyMessageA
TranslateMessage
ValidateRect
wsprintfA
CallWindowProcA
GetDlgItemTextW
IsWindowVisible
SendMessageA
CreateIcon
GetWindowWord
FindWindowExA
UnpackDDElParam
GetDialogBaseUnits
CreateWindowExW
SendDlgItemMessageA
UpdateLayeredWindow
GetMessageExtraInfo
ScreenToClient
AdjustWindowRectEx
CharLowerW
SetCursor
UpdateWindow
CreatePopupMenu
LoadAcceleratorsW
wvsprintfA
GetClassInfoW
GetUserObjectInformationW
LockWindowUpdate
LoadImageA
PostThreadMessageW
SendNotifyMessageW
ShowCursor
CloseWindowStation
InsertMenuW
DefWindowProcW
BeginPaint
SwitchToThisWindow
ModifyMenuA
FindWindowA
GetProcessDefaultLayout
LoadImageW
SetParent
WinHelpW
InvalidateRgn
RegisterWindowMessageW
SetScrollInfo
CreateAcceleratorTableA
InSendMessage
GetNextDlgTabItem
GetMessageTime
DefFrameProcA
BroadcastSystemMessageW
CallMsgFilterW
SetMenu
SystemParametersInfoW
PostQuitMessage
CopyImage
DispatchMessageA
PeekMessageA
SetWindowsHookExA
CallNextHookEx
DefDlgProcW

shlwapi

wnsprintfW
SHStrDupW
PathBuildRootW
AssocQueryStringW
StrCmpNW
PathCommonPrefixW
PathAppendW
StrCmpNIW
PathCanonicalizeW
PathRemoveExtensionW
PathGetCharTypeA
UrlUnescapeW
PathFindExtensionA
StrFormatKBSizeW
SHDeleteValueW
SHCreateShellPalette

shell32

DragQueryFileW
SHGetSettings
SHCreateShellItem
SHAppBarMessage
ExtractIconW
SHGetFileInfoA
SHParseDisplayName
SHBrowseForFolderA
ExtractIconExA
ShellExecuteExW
SHOpenFolderAndSelectItems
ShellExecuteExA
SHGetFolderPathA

gdi32

GetTextFaceA
SwapBuffers
GetViewportExtEx
PolyBezierTo
GetKerningPairsA
ExtTextOutA
GetTextMetricsW
GetViewportOrgEx
SetArcDirection
AddFontResourceW
ExtEscape
GetObjectW
GetPixelFormat
CreateScalableFontResourceA
EndPath
CloseMetaFile
StartDocW
PolyPolygon
GetPixel
SetViewportOrgEx
SetMetaFileBitsEx
SetMapperFlags
GetTextFaceW
GetStretchBltMode
SetMapMode
GetTextCharset
SetPolyFillMode
MoveToEx
CreateICA
RectVisible
PolyDraw
StartDocA
SetStretchBltMode
DescribePixelFormat
GetCurrentObject
DeleteEnhMetaFile
CreateBitmapIndirect
PolyPolyline
GetRandomRgn
PaintRgn
CreateFontIndirectA
Polyline
GetDIBits
TextOutA
GetNearestPaletteIndex
RoundRect

Exports

Exports

CPlApplet

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b41d2cfaaf91e4031012e6baea7c11b8

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

shell32

gdi32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 2KB